LinkedIn was hacked by a user in a Russian forum and has claimed to upload 6.5 million LinkedIn passwords. Linkedin has not confirmed or made any statement about the security breach, but are looking into it.
Linkedin tweeted, “Our team is currently looking into reports of stolen passwords. Stay tuned for more.”
LinkedIn passwords are encrypted using an algorithm known as SHA-1, which is considered to be relatively secure. Mashable reported. “Unfortunately, it also seems that passwords are stored as unsalted hashes, which makes it much easier to decipher them using pre-computed rainbow tables.”
While most complicated passwords; you know, the ones we all secretly hate at times where it askes you to invent a password with a more than six letter word, include a number and capital letter, will most likely take some time to decrypt, but the simple ones may be at a high risk.
The Russian user posted the encrypted passwords without usernames as proof of their Linkedin hack. Someone with the right knowledge and tools can crack the Linkedin passwords.
As with any security breach, you should login and change your passwords. It is especially important to do so if you use the same password for your banking or any other online account to avoid security breaches within those.
How to change a LinkedIn password:
Log into LinkedIn.
Click your name in the top right of the LinkedIn page, then select the “Settings” button.
Next, choose “Change” next to Password. (Located under your picture and email.)
You’ll be asked to type in your old password (the password you just logged in with) and choose a new one, and then retype the new password to confirm.
Click “Change password”.
And that’s it, your LinkedIn password is now changed.
If you’ve forgotten your current password, click the “Forgot password?” link at the sign in page. You’ll be sent an email for instructions to choose and confirm a new password.
LinkedIn has over 160 million subscribers, half of which are in the United States.