1 Comment

6.5 Million LinkedIn Passwords Compromised

Earlier in the day there were reports that about 6.5 million LinkedIn passwords were leaked on the web by a hacker. Later LinkedIn confirmed that passwords were compromised.
Vicente Silveira Director at LinkedIn confirmed this on the LinkedIn blog and added that “affected members who update their passwords and members whose passwords have not been compromised benefit from the enhanced security LinkedIn just recently put in place, which includes hashing and salting of our current password databases”. You can read more about it here:
http://goo.gl/MzF0R, http://goo.gl/1avvZ, and http://goo.gl/VB1II.
There are other websites which are providing the facility to check if your password has been compromised. Huffington Post in its report provided a link to Lastpass to check if your password has been compromised. But it requires you to enter your LinkedIn password (!!??!! Won’t this compromise my password if it hasn’t been already?). If you ask me I’d say a big NO to entering you password anywhere except the site it is meant for.
Well, it so happens that my LinkedIn password was also compromised, but before I could read the news on any of the Techblogs, I received a mail from LinkedIn, which says:

Dear abcd (user),
In order to ensure that you continue to have the best experience using LinkedIn, we are constantly monitoring our site to make sure your account information is safe.
We have recently disabled your account for security reasons. To reset your password, follow these quick steps:
1. Go to the LinkedIn website
2. Click on “Sign In”
3. Click on “Forgot Password?” and follow the directions on the website
Thank you,
The LinkedIn Team

And, like the email said I tried to sign in, my password did not work, clicked on “Forgot Password” and changed my password. Now, my predicament is, I might have used the same or similar password on a dozen other websites (easier to remember one password for all than to use different passwords for different sites you see). If you do decide to check whether it has been compromised, then read this before you do so http://goo.gl/MgtBu
But it’s best to log into LinkedIn and change your password NOW and always remember to keep unique passwords for each site, I am gonna do the same. I changed my password on LinkedIn and as soon as I finish writing this I am going to create unique passwords for each site I am registered on!! Here’s some help to create unique passwords for each site you register: http://goo.gl/7ZhXy.

To change your password on LinkedIn, go here: http://goo.gl/i8Mx0

One comment on “6.5 Million LinkedIn Passwords Compromised

  1. There is a simple, cost effective and secure solution using CORA (goCORA.com). Should a hacker compromise a server, CORA when properly used/designed makes the data useless.

    Data should be safe! Companies cannot just assume that these hackers will never compromise their server(s). CORA should be used to secure data so that, even if an unethical person or persons breaks through their firewall, the data they steal is useless.

Leave a Reply

Fill in your details below or click an icon to log in:

WordPress.com Logo

You are commenting using your WordPress.com account. Log Out / Change )

Twitter picture

You are commenting using your Twitter account. Log Out / Change )

Facebook photo

You are commenting using your Facebook account. Log Out / Change )

Google+ photo

You are commenting using your Google+ account. Log Out / Change )

Connecting to %s

%d bloggers like this: