It is kind of ironic sending out security tips on a site that's been compromised! This is horrible. A public company can't keep their password database secure?! We have to basically assume that many highly trafficked, sites will be attacked and some compromised in the future. Pretty depressing.. It is imperative that everyone use unique strong password on each site. A Password manager is basically mandatory. I wrote a blog post that covers this password area. I wish more regular users would follow some of my free tips
To the people thinking this is a 'minor' threat. A lot of damage can be done through social networks, mainly to start a wide 'social engineering' attack. Also many users use the same password for all of their social networking accounts, and some use the same password for everything including banking. So I'd say that this is more than a 'minor' threat. Though hopefully LinkedIn will learn and change their password encryption to something more secure.
6.5 million **UNIQUE** LinkedIn passwords were leaked. Quit a bit of users will have the same password (like : 012356 or passw0rd or obama2102).
This is done because someone had access to the database! Also, the passwords are from some time ago (year+). This means they are already in for some time.
This is bad: A) LinkedIn has still no clue and never knew it was hacked B) Password are weak encrypted. For a billion dollar company this is bad practice C) Users use passwords for more than one service, so damage is more than just contact information
I would like to know whether changing the password will help to keep the LinkedIn account safe. The hackers may get the new password too, right? Anyway, if you need to know the steps for changing the password for the linkedin account, you can watch this video http://www.youtube.com/watch?v=y9KGpS863IE
My pw was also hacked... God save us from the russian hackers... is this a cold war against the USA? http://joblagao.com/blog/linkedin-password-chori-ho-gaya/
I'm sorry, but who the h*** cares? How can the hackers get any money? I mean, seriously, they have the passwords, but no user names. What are they going to do? Try to figure out a username, then test 6.5 MILLION potential passwords...so they can link to weird people or change my profile to make me a circus highwire artist??????
Uhm... when a hacker gets into an account of one of your contacts, he could possibly post a message regarding security breaches in banks or what not and also post a link to change your details... by doing this, he is more likely to get you to comply as this is posted under a reliable contact of yours... and that's just one example...
The issue is that if he has the 6.5 million passwords he obviously has the usernames also - he just didn't post them. You wanna trust that he isn't going to release the usernames in the future someday?
Common process of hacks will be: 1.Gain Low Level Access (I.E:Your Linked In Account) 2.Profile and Harvest your details. 3.Test your Credentials on one of your other accounts. 4.start at 1
By the Time you Realize this all your social media accounts are compromized, your Gmail account, your Gameing accounts and God forbid your Pay pal, and Amazon accounts.....
The risk is there and never use the same password in multiple places, make sure that any athorative accounts use Pass phrases not password as this will exponentially improve your HASH complexity
The posting of advertisements, profanity, or personal attacks is prohibited. By using this Web site you agree to accept our Terms of Service. Click here to read the Rules of Engagement.
Reply to Comment The posting of advertisements, profanity, or personal attacks is prohibited. By using this Web site you agree to accept our Terms of Service. Click here to read the Rules of Engagement.
Was my LinkedIn password compromised?
http://blog.objectgraph.com/linkedin/
http://www.safegadget.com/34/how-to-create-store-and-use-secure-passwords/
This is done because someone had access to the database! Also, the passwords are from some time ago (year+). This means they are already in for some time.
This is bad:
A) LinkedIn has still no clue and never knew it was hacked
B) Password are weak encrypted. For a billion dollar company this is bad practice
C) Users use passwords for more than one service, so damage is more than just contact information
Anyway, if you need to know the steps for changing the password for the linkedin account, you can watch this video http://www.youtube.com/watch?v=y9KGpS863IE
Seriously, jokes aside, some users are indeed stupid enough to make a post like this on an open forum.
http://joblagao.com/blog/linkedin-password-chori-ho-gaya/
New meaning for ***: Why The Fuss?????
1.Gain Low Level Access (I.E:Your Linked In Account)
2.Profile and Harvest your details.
3.Test your Credentials on one of your other accounts.
4.start at 1
By the Time you Realize this all your social media accounts are compromized, your Gmail account, your Gameing accounts and God forbid your Pay pal, and Amazon accounts.....
The risk is there and never use the same password in multiple places, make sure that any athorative accounts use Pass phrases not password as this will exponentially improve your HASH complexity
I followed Kim's advice prompted by this breaking news story and changed my login details including my password on LinkedIn.
@MoniqueCloutier