Your LinkedIn account may be at risk.
A Russian forum user claims he has hacked LinkedIn, uploading more than 6.5 million encrypted LinkedIn passwords as proof, thereby leaking these passwords (without user names) online.
The passwords are encrypted with the SHA-1 cryptographic hash function. It also seems that passwords are stored as unsalted hashes.
This would mean an attacker might be able to crack as many passwords as they wish just by using some cheap resources in a short amount of time.
While some believe that the password collection is not genuine, other information sources would identify it's credibility.
According to a statement made by LinkedIn via Twitter -
Our team is currently looking into reports of stolen passwords. Stay tuned for more.
Where general security is concerned we recommend that you change your password.
We will be updating this post as soon as we have more information regarding the matter, please bookmark this page for regular updates.
Trackback URL for this post:
About the author
How can we help?
Need a quotation?
Need to register a domain name?
Need Linux web hosting?
Need a custom email address?
Need Windows web hosting?
Want to become a reseller?
Need a dedicated server?