LinkedIn Hacked ?

[Chaos]

Might want to change your password if the rumors are true.

http://www.bbc.co.uk/news/technology-18338956

LinkedIn ‏@LinkedIn

Our team is currently looking into reports of stolen passwords. Stay tuned for more.


Password Managers -

http://keepass.info/
http://lastpass.com/
https://agilebits.com/onepassword

 

[SuperBOB]

If they are just looking at it - then don't change your password to anything you want to use for a while. Wait until full disclosure & its "secure" again..

 

[No1newts]

I seem to be fine, touch wood

 

[JBod]

I don't use social networking sites.

*safe*

 

[lookitsjonno]

I'll be gobsmacked if a company the size and stature of linkedin are storing plain text passwords

 

[Mr^B]

You're not gobsmacked then. Neither did you read the article;

"Hackers posted a file containing encrypted passwords onto a Russian web forum."

 

[matt_fsr]

They have invited the hacking community to help with decryption.

Maybe ya know.... read the article?

 

[Vulcan]

Better article...

http://www.zdnet.com/blog/btl/646-million-linkedin-passwords-leaked-online/79290

 

[lookitsjonno]

You're not gobsmacked then. Neither did you read the article;

"Hackers posted a file containing encrypted passwords onto a Russian web forum."

if they are encrypted it should just be the case of blocking the hole and making a script to resalt the passwords before they manage to decipher them.

 

[panthro]

Potential stupid question, but my password for linkedin is the same as a few of my other passwords. Should I change them all?

 

[Dist]

Well if this is true I hope it happened a few weeks ago, as it was only a few days ago I was urged to create a linkedin account as it may help at some point to get a job (I'm not entirely sure linkedin will help someone like me who has no job experience, just a degree, I just hope it won't hurt my chances by showing a lack of connections/job experience).

 

[Skillmister]

I don't use social networking sites.

*safe*

Omg aren't you just a hero then! Congrats!!!!

 

[Uhtred]

Potential stupid question, but my password for linkedin is the same as a few of my other passwords. Should I change them all?

to be safe - yes

 

[Deleted member 77746]

I think I will take a chance and leave it as it is.

 

[dfarrall]

I'll be gobsmacked if a company the size and stature of linkedin are storing plain text passwords

Look here : http://plaintextoffenders.com/
Be gobsmacked

 

[BDEE]

Thanks for this. Changed mine

 

[KIA]

Potential stupid question, but my password for linkedin is the same as a few of my other passwords. Should I change them all?

Definitely. Never re-use passwords. Use a password manager.

 

[Skillmister]

Use a password manager.

Recommendations? I really need to sort out my passwords.

 

[Dist]

Recommendations? I really need to sort out my passwords.

Lastpass, I use it myself and highly recommend it. Normally I don't trust things like password managers, but Steve Gibson (who coined the term spyware, and does weekly security podcasts, although some think he is a little crazy) did an in depth review on the technical aspects and said Lastpass is pretty much as safe as you can get with a password manager.

It allows easy generation of decent passwords, and easy management of unique password for each website you use.

Free to use for PC browsers, and for a small fee ($12 a year) you get the premium account, which include things like Yubikey support, and a mobile app.

 

[KIA]

Recommendations? I really need to sort out my passwords.

I use Keepass on the desktop & KyPass on iOS. I use Dropbox to sync the database.