Hackers crowdsource help to crack nearly 6.5million leaked LinkedIn passwords
Nearly 6.5 million encrypted LinkedIn passwords were posted to aRussian hacker siteaccording to Dagens IT.On June 5, the hackerslinkedto the 118MB hash and were crowdsourcing help to break theencryption.According to acache of this site,of 6,458,020 passwords hashed withSHA-1, 236,578 passwords had allegedly been cracked before thewebsite went down.
LinkedInfinally tweeted "Our team is currently looking into reports of stolen passwords. Stay tuned for more."Then the companytweeted:
LinkedIn claimed,"As of March 31, 2012, LinkedIn operates the world'slargest professional network on the Internet with 161 million membersin over 200 countries and territories." The Norwegian Center forInformation Security said to change passwords as soon as possible,reported NRK.Hopefully, people didn't reuse that password for othersocial networking or sensitive information sites. With over 900 LinkedIncontacts, Center Point Communications Director Mariann Schiefloesaidthe password leak was like "losing my mobile phone."F-Secure's Mikko Hypponentold The Vergehe thinks this is "a realcollection," possibly "some sort of exploit on their web interface, butthere's no way to know."According toSlashGear,there is some speculation concerningusernames that match the SHA-1 unsalted password hashes. Norwegiansecurity professionals have suggested the usernames may be privatelyrevealed, may be used by the hackers for unofficial access, or may besold off on the underground.Per Thorsheimhas received confirmation from many people that theyfound their password in the stolen list. In thethousands of tweetsaboutthe leaked LinkedIn passwords, others report their passwords were
on the list. Many people are stressing "change your LinkedIn passwordimmediately" and warning to get ready for spam and phishing emails.