LinkedIn passwords 'leaked by hackers' - GoFuckYourself.com

DVTimes · 06-06-2012, 09:49 AM

Social networking website LinkedIn is investigating claims that over six million of its users' passwords have been leaked onto the internet.

Hackers posted a file containing encrypted passwords onto a Russian web forum.

They have invited the hacking community to help with decryption.

LinkedIn, which has over 150 million users, has not released a formal statement, but tweeted: "Our team is currently looking into reports."

Later, it added: "Our team continues to investigate, but at this time we are still unable to confirm that any security breach has taken place."

Security researcher Graham Cluley told the BBC he believed the breach was genuine.

"We've confirmed there are LinkedIn passwords in the data.

"We did this by searching through the data for (hashed) passwords that we at Sophos use only on LinkedIn. We found those passwords in the data. We also saw that hundreds of the passwords contain the word 'Linkedin'.

"Our advice is to change your LinkedIn password. And if you use the same password on other accounts, change it there too."

Privacy concern

The news comes as LinkedIn was forced to update its mobile app after a privacy flaw was uncovered by security researchers.

Skycure Security said the the mobile app was sending unencrypted calendar entries to LinkedIn servers without users' knowledge.

The information included meeting notes, which often contain information such as dialling numbers and passcodes for conference calls.

In response LinkedIn said it would "no longer send data from the meeting notes section of your calendar".

The company stressed that the calendar function was an opt-in feature.

However, the researchers who uncovered the flaw said the transmission of the data to LinkedIn's servers was done without a "clear indication from the app to the user".

In a statement posted on the company's blog, LinkedIn's mobile product head Joff Redfern said a new "learn more" link would be added to the app so users have a clearer picture about how their information is being used and transmitted.

http://www.bbc.co.uk/news/technology-18338956

lucas131 · 06-06-2012, 10:10 AM

oh no, no ... please ... please say no ... mom ... mooomm ... have seen that? they have your assword! oh mooomm ... call mooommmmmmmmmmmmmm

2intense · 06-06-2012, 01:09 PM

who the fucking cares?

JFK · 06-06-2012, 01:17 PM

Quote:

Originally Posted by 2intense

who the fucking cares?

something like that, I have 290 connections, never use it ........

BIGTYMER · 06-06-2012, 01:19 PM

Quote:

Originally Posted by 2intense

who the fucking cares?

Clearly you don't use them. Some of us do.

ottopottomouse · 06-06-2012, 02:09 PM

123456
password
poiuyt
qwerty
098765

B.Barnato · 06-06-2012, 02:17 PM

Quote:

Originally Posted by ottopottomouse

123456

Please remove my password.

DamianJ · 06-06-2012, 02:24 PM

Do you have an account there DVTimes where you look for men to bum?

06-06-2012, 09:49 AM	#1
DVTimes xxx Industry Role: Join Date: Jun 2003 Location: UK Posts: 31,544	LinkedIn passwords 'leaked by hackers' Social networking website LinkedIn is investigating claims that over six million of its users' passwords have been leaked onto the internet. Hackers posted a file containing encrypted passwords onto a Russian web forum. They have invited the hacking community to help with decryption. LinkedIn, which has over 150 million users, has not released a formal statement, but tweeted: "Our team is currently looking into reports." Later, it added: "Our team continues to investigate, but at this time we are still unable to confirm that any security breach has taken place." Security researcher Graham Cluley told the BBC he believed the breach was genuine. "We've confirmed there are LinkedIn passwords in the data. "We did this by searching through the data for (hashed) passwords that we at Sophos use only on LinkedIn. We found those passwords in the data. We also saw that hundreds of the passwords contain the word 'Linkedin'. "Our advice is to change your LinkedIn password. And if you use the same password on other accounts, change it there too." Privacy concern The news comes as LinkedIn was forced to update its mobile app after a privacy flaw was uncovered by security researchers. Skycure Security said the the mobile app was sending unencrypted calendar entries to LinkedIn servers without users' knowledge. The information included meeting notes, which often contain information such as dialling numbers and passcodes for conference calls. In response LinkedIn said it would "no longer send data from the meeting notes section of your calendar". The company stressed that the calendar function was an opt-in feature. However, the researchers who uncovered the flaw said the transmission of the data to LinkedIn's servers was done without a "clear indication from the app to the user". In a statement posted on the company's blog, LinkedIn's mobile product head Joff Redfern said a new "learn more" link would be added to the app so users have a clearer picture about how their information is being used and transmitted. http://www.bbc.co.uk/news/technology-18338956 __________________ The Affiliate Program

06-06-2012, 01:09 PM	#3
2intense Too lazy to set a custom title Industry Role: Join Date: Dec 2009 Location: Google Posts: 12,463	who the fucking cares? __________________ Most Affordable Firewall & Malware Protection for Linux Servers

06-06-2012, 02:09 PM	#6
ottopottomouse She is ugly, bad luck. Industry Role: Join Date: Jan 2010 Posts: 13,177	123456 password poiuyt qwerty 098765 __________________ ↑ see post ↑ 13101

06-06-2012, 10:10 AM	#2
lucas131 ¯\_(ツ)_/¯ Industry Role: Join Date: Aug 2004 Posts: 11,475	oh no, no ... please ... please say no ... mom ... mooomm ... have seen that? they have your assword! oh mooomm ... call mooommmmmmmmmmmmmm

06-06-2012, 02:24 PM	#8
DamianJ Too lazy to set a custom title Industry Role: Join Date: Jul 2006 Location: A magical land Posts: 15,808	Do you have an account there DVTimes where you look for men to bum?