Millions of LinkedIn passwords reportedly leaked online

I came across this today and thought I would warn everyone

Millions of LinkedIn passwords reportedly leaked online

by Lance Whiney

LinkedIn users could be facing yet another security problem. A user in a Russian forum says that he has hacked and uploaded almost 6.5 million LinkedIn passwords, according to The Verge. Though his claim has yet to be confirmed, Twitter users are already reporting that they’ve found their hashed LinkedIn passwords on the list, security expert Per Thorsheim said.

LinkedIn revealed through its own tweet that it’s looking into reports of stolen passwords, and it advised users to stay tuned for more information. Many of the hashes include the word “linkedin,” which The Verge believes lends credibility to the reports. LinkedIn passwords are encrypted using an algorithm known as SHA-1, which is considered very secure. Complex passwords will likely take some time to decrypt, but simple ones may be at risk.

Sophos security expert Graham Cluley is advising LinkedIn users to change their passwords as soon as possible, at least as a precaution. If the report is true, then hackers are undoubtedly working hard to decrypt the hashed, or unsalted, passwords.

“Although the data which has been released so far does not include associated email addresses, it is reasonable to assume that such information may be in the hands of the criminals,” Cluley added.

The report of the leaked passwords comes hard on the heels of word from security researchers that LinkedIn’s iOS app is collecting information from calendar entries — including passwords — and transmitting it back to the company’s servers without users’ knowledge.

In response to concerns over this collection of data, LinkedIn yesterday tried to explain how and why it captures this information. The company acknowledged that it picks up information from the Calendar app on your iOS device to try to sync any appointments listed with fellow LinkedIn users. The feature is opt-in, so users of the LinkedIn IOS app can turn off the ability to “Add Calendar” in the Settings screen.

The details sent to LinkedIn’s server include the e-mail addresses of the people you meet with, the meeting subject, the location, and any meeting notes. The calendar data is sent securely using SSL encryption and isn’t shared or stored, LinkedIn added.

But in a concession to concerned users, the company has promised two tweaks to the feature. It will no longer pick up meeting notes from your calendar. And it will add a “learn more” link to explain how your calendar data is being used.

LinkedIn did not address the question of whether passwords are being collected along with the meeting information.

To change your LinkedIn password, log onto your account. Click on your name in the upper right corner and then click on the link for Settings. In the Settings section, click on the Change link next to Password. You’ll be prompted to to enter your old password and then create a new one. Aim to pick a complex password that’s not easy to decipher. Then click on the Change Password button.

CNET contacted LinkedIn for further details and will update the story when we get more information.

Here is the url to the acutal story

http://news.cnet.com/8301-1009_3-57448079-83/millions-of-linkedin-passwords-reportedly-leaked-online/?tag=mncol;editorPicks

Back

What Clients Say About Patrice & Associates

  • I appreciate what Sherri and Patrice and Associates Hospitality Recruitment did for me and my career.

    Sherri Balzer is an excellent job recruiter. I had been working with her for more than 3 months where I had multiple job interviews with different companies. She is always very detailed, caring, patient, and most of all very professional. I turned down multiple job offers because they were not a good fit for me and Sherri understood my reasons. Instead of losing hope in me she kept working hard looking for other companies that suited my skill set and knowledge. We found the perfect company and I got the best job offer available. I appreciate what Sherri and Patrice and Associates Hospitality Recruitment did for me and my career. Respectfully,

    Andrew Figueroa

    I appreciate what Sherri and Patrice and Associates Hospitality Recruitment did for me and my career.
  • I referred a friend to Patrice & Associates Hospitality Recruitment

    Kim Marzett has been great! Alongside her professional demeanor, she answered all of my questions freely. She has a very welcoming personality, and helps you every step of the way! I referred a friend to her. I was impressed and appreciative! I referred a friend to Patrice & Associates Hospitality Recruitment
  • Patrice & Associates Hospitality Recruitment is by far the best recruiting agency.

    I just wanted to say thank you to Corina for setting me up with Redstone American Grill. I appreciate all the time and research you and your team have done to make sure that I was prepared for my interviews. Patrice & Associates Hospitality Recruitment is by far the best recruiting agency I’ve worked with in my 25+ years of experience. I’ll be your client for as long as I’m in this field. Alexandre Vincent Patrice & Associates Hospitality Recruitment is by far the best recruiting agency
  •  

    Thank you Fajar and Patrice & Associates Hospitality Recruitment

    From the first time we spoke, til the time I landed the job and even now - days after I have started the job, Fajar has been absolutely outstanding! She constantly checked in with me to answer any questions, provided valuable information and tips for my interview and updated my resume for me. I truly appreciate Fajar's commitment to ensuring I had everything I needed to successfully transition into a new career. I am more than happy with her work and would be more than willing to recommend her services to anyone looking for a new career path. Thank you once again Fajar and Patrice and Associates Hospitality Recruitment for everything you all have done. I am truly very grateful!
    Thank You, Brandon Chase Thank you Fajar and Patrice and Associates Hospitality Recruitment
  • Working with Jillian and Patrice & Associates Hospitality Recruitment was an amazing experience.  First of all, the work Jillian did on my resume before presenting me to the client was outstanding.  I really feel that it presented me in the best light for the client (and it worked because I got the job!).  I’ve worked with a lot of recruiting firms before and the level of service provided by Jillian was far and above the rest of the industry.  Jillian was always available to talk any time of the day and really made me feel like she wasn’t just concerned with placing a candidate - she also cared about my happiness and well-being throughout the process. Dennis Brown My recruiter cared about my happiness throughout the process.