Welcome, Guest: Register On Nairaland / LOGIN! / Trending / Recent / NewStats: 3,195,522 members, 7,958,582 topics. Date: Wednesday, 25 September 2024 at 06:00 PM |
Nairaland Forum / Science/Technology / Webmasters / 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords (4329 Views)
How To Force Users To Change Passwords In Wordpress – Expire Password / Why You Should Change From ..com To Yourname.com / 25 Worst Passwords Of 2011 [study] (2) (3) (4)
6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Onos55: 10:56pm On Jun 06, 2012 |
Source: http://www.canadianbusiness.com/article/86724--some-linkedin-passwords-stolen-leaked-online-users-should-change-passwords LONDON - Business social network LinkedIn said Wednesday that some of its users' passwords have been stolen and leaked onto the Internet. Source: http://www.canadianbusiness.com/article/86724--some-linkedin-passwords-stolen-leaked-online-users-should-change-passwords ------------------------------------------------------------- Also see this from security firm Sophos: Source: http://nakedsecurity.sophos.com/2012/06/06/millions-of-linkedin-passwords-reportedly-leaked-take-action-now/ Although not yet confirmed by the business-networking website, it is being widely speculated that over six million passwords belonging to LinkedIn users have been compromised. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 7:35am On Jun 07, 2012 |
w0000t!!! Linkedin got pawned! |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by TheArbiter: 9:41am On Jun 07, 2012 |
Check the status of your LinkedIn password on the webpage link below. The site checks your hashed password against the leaked passwords hashes and informs you if it had been compromised. If it has, change your password immediately [size=14pt]http://leakedin.org/[/size] The site is secure. It was made by a respected programmer to help novices with password phobias check their password safety. If you're paranoid, just change your password without checking. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Nobody: 9:42am On Jun 07, 2012 |
I changed mine yesterday when the news came out. However you are also advised to change your password ,if it is the same for your email and social media accounts , immediately !!! |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Nobody: 9:44am On Jun 07, 2012 |
The Arbiter: Check the status of your LinkedIn password on the webpage link below. The site checks your hashed password against the leaked passwords hashes and informs you if it had been compromised. If it has, change your password immediately [size=19pt]Guys do not do it !!!! Ignore this guys advice[/size] Ignore the above. Do not be conned Just go on and change your passwords by yourself !!! |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 9:54am On Jun 07, 2012 |
Out of sheer curiosity, I tried this http://leakedin.org . .Although, I knew it was quite a stupid move considering the fact that the owner of the site could actually be storing users pwds. .but then I have nothing to lose as I don't re-use my passwords . . |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Lilspicer(f): 10:07am On Jun 07, 2012 |
Handworks of (Anonymous and lulz) WE DONT FORGIVE OR FORGET EXPECT US......WE ARE 99% |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by TheArbiter: 10:08am On Jun 07, 2012 |
By all means please change your passwords. But recall i said [size=16pt]hashed[/size] passwords. Its really simple to hash your password and pop it in to check. I dont give advice without due diligence and i check and double check my facts to verify correctness and authenticity. I take web security seriously. By the ways every1, secure passwords should look like this [size=14pt]as#1vb@63ut=&sg%[/size] in any combination of letters, numbers and special characters of your choice and should be at least 15 characters in length. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Nobody: 10:21am On Jun 07, 2012 |
The Arbiter: By all means please change your passwords. But recall i said [size=16pt]hashed[/size] passwords. Its really simple to hash your password and pop it in to check. I dont give advice without due diligence and i check and double check my facts to verify correctness and authenticity. I take web security seriously. But why should they, when it is as simple as loggin on to your social media site and changing the password yourself. Why are you so keen to make them verify their passwords on your link , I work as a senior IT professional and this is just not on !!! |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Nobody: 10:24am On Jun 07, 2012 |
The Arbiter: Check the status of your LinkedIn password on the webpage link below. The site checks your hashed password against the leaked passwords hashes and informs you if it had been compromised. If it has, change your password immediately IGNORE THIS GUY, HE IS A HACKER AND HE WANT HACK YOUR INFORMATION AS WELL... |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by denzel2009: 10:42am On Jun 07, 2012 |
Slyr0x: Out of sheer curiosity, I tried this http://leakedin.org . .Although, I knew it was quite a stupid move considering the fact that the owner of the site could actually be storing users pwds. .but then I have nothing to lose as I don't re-use my passwords . . Slyrox, are they storing password in clear texts? LinkedIn |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by mrperfect(m): 10:59am On Jun 07, 2012 |
This is sad. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by TheArbiter: 11:00am On Jun 07, 2012 |
First misconception; its not my website. Second misconception; passwords are stored as hashed or encrypted data (depending on the encryption method) and is the method of storing passwords on every internet site database (including Nairaland). Third misconception; hashing and checking the hash ID doesnt compromise your password. Fourth misconception; I am not keen to to make people verify passwords on the site so they can be hacked (Did any1 note that usernames are not required). Lastly Trust is a difficult thing on the net. Unfortunately, the guy who mashed up the checking site has a respected internet reputation and can be reached here. Could every1 kindly disregard my first post above and just change your passwords (Frosbel's sensible advice). @frosbel I dont doubt your credentials and i think mine are are bit impeccable too. However using my knowledge to harm is unthinkable. It negates my principles. You could go through my post history and verify. Given the rampant cases of scammers and hackers, your advice makes for peace of mind and should supersede mine. frosbel: c |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by TheArbiter: 11:05am On Jun 07, 2012 |
The password hashes were unsalted SHA-1 hashes. SHA-1 was proven weak back in 2005, and unsalted hashes are especially weak. denzel2009: |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Piyke: 11:05am On Jun 07, 2012 |
The Arbiter: Check the status of your LinkedIn password on the webpage link below. The site checks your hashed password against the leaked passwords hashes and informs you if it had been compromised. If it has, change your password immediately This is a phishing site. Be warned |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 11:11am On Jun 07, 2012 |
denzel2009: Nah. .The passwords are stored as unsalted SHA-1 hashes. SHA-1 is a secure algorithm, but is not foolproof. Even so, unless your password is a dictionary word (i.e. password,qwerty,etc), or very simple, it will take some time to crack. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 11:13am On Jun 07, 2012 |
Piyke: And your proof is? I think its best we don't say/type what we don't know! |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by WhoIGoAsk: 11:20am On Jun 07, 2012 |
Hackers No be small thing. Next na fb, huh? |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by TheArbiter: 11:42am On Jun 07, 2012 |
LinkedIn said on Wednesday that some passwords on a list of allegedly stolen hashed passwords belong to its members, but did not say how its site was compromised. "We can confirm that some of the passwords that were compromised correspond to LinkedIn accounts," Vicente Silveira, a director at the social-networking site for professionals, wrote in a blog post. It is unknown how many passwords have been verified by LinkedIn. LinkedIn has disabled the passwords on those accounts, it said. Account holders will receive an email from LinkedIn with instructions for resetting their passwords. The emails will not include any links. Phishing attacks often rely on links in emails that lead to fake sites designed to trick people into providing information, so the company says it will not send links in emails. http://www.zdnet.co.uk/news/security-threats/2012/06/07/linkedin-confirms-password-leak-40155341/?s_cid=938 |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by TheArbiter: 12:08pm On Jun 07, 2012 |
Now for a little web reality shake-up. How long would it take to compromise a password. Why not do a dummy run in the webpage link below and be educated on how secure passwords should be like. http://howsecureismypassword.net/ Now please dont go and enter your real passwords here, i said dummy runs. Just check an equivalent to see how secure your password choice may be. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 12:24pm On Jun 07, 2012 |
It would take a desktop PC About 97 billion years to crack my password
|
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by denzel2009: 12:26pm On Jun 07, 2012 |
The Arbiter: Slyr0x: Thanks. These hackers are useless. They should do facebook and amazon na. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by TheArbiter: 12:27pm On Jun 07, 2012 |
Wow Slyr0x. You're definitely no pushover. I recommended the site to a few of my friends after their email accounts were hacked. It enabled them to see the folly of their password habits. I hope other people will give it a try and be more educated about passwords. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by denzel2009: 12:36pm On Jun 07, 2012 |
Slyr0x: It would take a desktop PC About 97 billion years to crack my password Ok I wouldn't bother cracking your password, I would just hijack your session |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Piyke: 1:00pm On Jun 07, 2012 |
Slyr0x: It would take a desktop PC About 97 billion years to crack my password You know if its actually ur real password you put there, itd now compromised as the administrator or whoever can collect what u typed in |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 1:11pm On Jun 07, 2012 |
denzel2009: Lmaooo. .go ahead o0. .As long as it doesn't affect the amount in my account The Arbiter: Wow Slyr0x. You're definitely no pushover. Most of my passwords follow this trend esp. for emails > Myn@meisslyrox@ndmyuniquenumberis7 (My name is slyrox & my unique number is 7). . Then for cPanels and stuffs like that > TXluQG1laXNzbHlyb3hAbmRteXVuaXF1ZW51bWJlcmlzNw== (I use this site to base64 encode my pwds. . The Irony there is the passwords eventually get too complicated especially if it's not an account I use frequently and also 'cos I don't reuse my passwords. For accounts like these, I often resort to using the "Forgot My Password" feature. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 1:20pm On Jun 07, 2012 |
Piyke: Compromised?? Hell No! It's like giving someone a key without actually mentioning who owns the key or what the key opens. |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by cecegorz(m): 1:28pm On Jun 07, 2012 |
The Arbiter: By all means please change your passwords. But recall i said [size=16pt]hashed[/size] passwords. Its really simple to hash your password and pop it in to check. I dont give advice without due diligence and i check and double check my facts to verify correctness and authenticity. I take web security seriously. Dude, It's a criminal offense for you to lead people to verify a third party password/PIN on your site, for whatever reason You want to do some time in jail or what? |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by denzel2009: 1:39pm On Jun 07, 2012 |
Slyr0x: I'm of the opinion that passwords shouldn't be more than 8 characters. Just anything to avoid being written down as it invalidates the reason for having a password. You be security expert now, don't teach people bad things |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Slyr0x: 1:46pm On Jun 07, 2012 |
denzel2009: lool. . .but then there are some things you don't have to write down. . Look at this My name is denzel and I am 32 yrs old. . Making it a password, it becomes MyNameIsDenzelAndIam32yrsOld. .Simple. . But then you could just introduce some characters like replacing all a's with @ i.e. MyN@meIsDenzel@ndI@m32yrsOld. . http://howsecureismypassword.net/ says it would take a desktop PC About 8 undecillion years to crack your password. . You now have a secure and easy to remember password . . |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by denzel2009: 1:57pm On Jun 07, 2012 |
Slyr0x: I understand you bro. but my online bank account will now tell me to enter the 10th,18th and 22nd character of my password and I have to write it on piece of paper and count in order not screw my access. you get me? |
Re: 6.5 Million Linkedin Passwords Stolen - Users Should Change Passwords by Nobody: 2:41pm On Jun 07, 2012 |
Check the status of your LinkedIn password on the webpage link below. The site checks your hashed password against the leaked passwords hashes and informs you if it had been compromised. If it has, change your password immediately guys, dont use that link. by providing your password, they can look up ur username using the resulting hash value. This is meant to give them access to your linked in account. |
Is Blog Commenting Still A Good Link Building Strategy For SEO In 2019? / / How To Bypass Compulsory Registration On Any Site
(Go Up)
Sections: politics (1) business autos (1) jobs (1) career education (1) romance computers phones travel sports fashion health religion celebs tv-movies music-radio literature webmasters programming techmarket Links: (1) (2) (3) (4) (5) (6) (7) (8) (9) (10) Nairaland - Copyright © 2005 - 2024 Oluwaseun Osewa. All rights reserved. See How To Advertise. 100 |