LinkedIn Hacked
![[Post New]](/jforum/templates/default/images/icon_minipost_new.gif){kind=icon}
Anonymous
|
Check your account and reset your password, apparently they were hacked and almost 7 million passwords were stolen. The passwords have been posted on the internet. If your password was one of the ones stolen, you should immediately change the password Here is a web page that will tell you if your password was one of those posted online: https://lastpass.com/linkedin/. It is safe to enter your password there
|
Anonymous
|
Thanks! Linked in will also prompt you to change your password if you try to log in.
|
Anonymous
| and if you used that same password other places.... |
Anonymous
|
If you used the same password anywhere else, you have to change that too.
And they are building rainbow tables with the data, so if it's a password you think someone else may have used (like something common) you have to redo those too. |
jsteele
Site Admin Offline
Site Admin Offline
I would never enter a password there. In fact, that seems like a scam. The LinkedIn passwords are hashed. Hashes are not reversible. So, hackers hash known lists of words and compare the known and unknown hashes for matches. If everyone enters unhashed passwords into that form, they are just building a list to help find matched hashes and, hence, expose passwords. |
DC Urban Moms & Dads Administrator
https://bsky.app/profile/jsteele.bsky.social
https://mastodon.social/@jsteele
https://bsky.app/profile/jsteele.bsky.social
https://mastodon.social/@jsteele
Anonymous
| I got an email today but assumed it was spam. What exactly would whoever hacked the passwords do with them? My linked in profile is open anyway. I suppose they could change my work experience but that doesn't seem very productive. I dont have any credit card or other info on linked in. |
jsteele
Site Admin Offline
Site Admin Offline
Building rainbow tables takes a lot of time and computer resources. Here's a better idea: set up a web page and tell people just to enter their passwords. |
DC Urban Moms & Dads Administrator
https://bsky.app/profile/jsteele.bsky.social
https://mastodon.social/@jsteele
https://bsky.app/profile/jsteele.bsky.social
https://mastodon.social/@jsteele
Anonymous
Trubut view source on the page and you will see they only post the hash. |
Anonymous
| True but |
Anonymous
|
Then again maybe it's bad to train the users to do this. There is another site that lets you post your own sha-1 hash.
Btw boo! To LinkedIn for not salting their hashes. Bad bad bad. |
Anonymous
OP here, this came from my very vigiliant IT department at work. They would NEVER ask me to enter a password in an unsecure site. |
jsteele
Site Admin Offline
Site Admin Offline
Feel free to enter your password wherever you want. I just explained why I wouldn't do it. Your IT department didn't care that you entered your password in LinkedIn and look where that got you. |
DC Urban Moms & Dads Administrator
https://bsky.app/profile/jsteele.bsky.social
https://mastodon.social/@jsteele
https://bsky.app/profile/jsteele.bsky.social
https://mastodon.social/@jsteele