Millions of LinkedIn passwords reportedly leaked online

I came across this today and thought I would warn everyone

Millions of LinkedIn passwords reportedly leaked online

by Lance Whiney

LinkedIn users could be facing yet another security problem. A user in a Russian forum says that he has hacked and uploaded almost 6.5 million LinkedIn passwords, according to The Verge. Though his claim has yet to be confirmed, Twitter users are already reporting that they’ve found their hashed LinkedIn passwords on the list, security expert Per Thorsheim said.

LinkedIn revealed through its own tweet that it’s looking into reports of stolen passwords, and it advised users to stay tuned for more information. Many of the hashes include the word “linkedin,” which The Verge believes lends credibility to the reports. LinkedIn passwords are encrypted using an algorithm known as SHA-1, which is considered very secure. Complex passwords will likely take some time to decrypt, but simple ones may be at risk.

Sophos security expert Graham Cluley is advising LinkedIn users to change their passwords as soon as possible, at least as a precaution. If the report is true, then hackers are undoubtedly working hard to decrypt the hashed, or unsalted, passwords.

“Although the data which has been released so far does not include associated email addresses, it is reasonable to assume that such information may be in the hands of the criminals,” Cluley added.

The report of the leaked passwords comes hard on the heels of word from security researchers that LinkedIn’s iOS app is collecting information from calendar entries — including passwords — and transmitting it back to the company’s servers without users’ knowledge.

In response to concerns over this collection of data, LinkedIn yesterday tried to explain how and why it captures this information. The company acknowledged that it picks up information from the Calendar app on your iOS device to try to sync any appointments listed with fellow LinkedIn users. The feature is opt-in, so users of the LinkedIn IOS app can turn off the ability to “Add Calendar” in the Settings screen.

The details sent to LinkedIn’s server include the e-mail addresses of the people you meet with, the meeting subject, the location, and any meeting notes. The calendar data is sent securely using SSL encryption and isn’t shared or stored, LinkedIn added.

But in a concession to concerned users, the company has promised two tweaks to the feature. It will no longer pick up meeting notes from your calendar. And it will add a “learn more” link to explain how your calendar data is being used.

LinkedIn did not address the question of whether passwords are being collected along with the meeting information.

To change your LinkedIn password, log onto your account. Click on your name in the upper right corner and then click on the link for Settings. In the Settings section, click on the Change link next to Password. You’ll be prompted to to enter your old password and then create a new one. Aim to pick a complex password that’s not easy to decipher. Then click on the Change Password button.

CNET contacted LinkedIn for further details and will update the story when we get more information.

Here is the url to the acutal story

http://news.cnet.com/8301-1009_3-57448079-83/millions-of-linkedin-passwords-reportedly-leaked-online/?tag=mncol;editorPicks

Back

What Clients Say About Patrice & Associates

  • Doug's Hospitality Recruitment Skills Found a Job for Glenn!

    I cannot say enough good things about Doug. He was a joy to work with and if I ever need a recruiter I will call on him. Thank You, Glenn Davis   Have a Hospitality Recruitment Specialist work for you for FREE Doug's Hospitality Recruitment Skills Found a Job for Glenn!
  • Hospitality Recruiter "helped me land this job"

    I would like to say that I had the most wonderful experience working with Roberto. He was very kind and knowledgeable.  He helped me pick a company that was the right for for me. He was a helping hand throughout my entire process. I know I am the one who interviewed, but Roberto's  conversation and tips helped me land this job. I am so fortunate to have worked with Roberto. He was a wonderful recruiter.   Career Coaches that help you for FREE Hospitality Recruiter "helped me land this job"
  • Hospitality Recruiters Truly Care!

    My experience with Roberto was wonderful.  I have never gone through a recruiter before and Roberto was an amazing first experience.  Roberto was very helpful and walked the experience with me. I felt like he really cared and truly happy for me when I  got the job. I would definitely recommend Roberto to anyone who wants to feel like someone is going through the process with them he made me feel like he was genuine! Thank you Roberto! -Arleen Roberts   What kinds of jobs does a Hospitality Recruitment Specialist have for me? Hospitality Recruiters Truly Care!
  • Let a Hospitality Recruiter Find You a Job!

    My experience with Patrice and Associates has been the best experience ever,  while listening to my needs and making them happen has been a journey of wonderful opportunities. Thank you Daniel Avery. It’s been a blast working with you and you turned my mountain into a mole hill. -Joleen Phelps   How to work with a recruitment specialist Let a Hospitality Recruiter Find You a Job!
  • Hospitality Recruiters Can Help You with Your Resume!

    Ken Welch did an amazing job helping me find new job opportunities. He helped me build up my resume and even got me ready for potential interviews. He kept me updated constantly and before I knew it, I had many options of restaurants I could send my resume to. With his help, I got the job at my first choice and now I can’t wait to be their new manager. It was a very easy process and I thank Ken for all his help. Sincerely, Rich Fletcher   What kinds of jobs does a Hospitality Recruitment Specialist have for me? Hospitality Recruiters Can Help You with Your Resume!