Hello IT in Canada Forum World,
As this is my inaugural post, I should take the time to introduce myself. My name is Kevin and I am just finishing up my first week as a staff writer here with IT in Canada and Channels Insider. Now onto the forum discussion...
Two days ago the LinkedIn Twitter account broke news of a security issue with this message:
"Our team is currently looking into reports of stolen passwords. Stay tuned for more."
They quickly followed up with this(blog.linkedin.com/2012/06/06/updating-yo...rity-best-practices/
) blog post explaining that their security team was investigating reports of stolen LinkedIn passwords posted to a list on a hacker website - approximately 6.5 million's worth to be more specific.
With over 150 million registered users, that only represents a small percentage of LinkedIn's profiles... but 6.5 million accounts with leaked passwords is still a huge number and represents a major security concern.
The LinkedIn Blog posted this (blog.linkedin.com/2012/06/07/taking-step...protect-our-members/
) update on the problem yesterday which states that "most of the passwords on the list appear to remain hashed and hard to decode" and that to the best of their knowledge " no email logins associated with the passwords have been published" nor has LinkedIn "received any verified reports of unauthorized access to any member’s account as a result of this event."
I think LinkedIn has done as best a job as they can in handling the situation, but it's still unnerving that such a thing could happen.
So did you change your LinkedIn password? What's your take on the whole situation forum world?
You should also take a look at these steps that LinkedIn suggests take to protect yourself:
- Make sure you update your password on LinkedIn (and any site that you visit on the Web) at least once every few months.
- Do not use the same password for multiple sites or accounts.
- Create a strong password for your account, one that includes letters, numbers, and other characters.
- Watch out for phishing emails and spam emails requesting personal or sensitive information.