Rumor has it that 6.5 million LinkedIn passwords have been leaked to a Russian hacker forum. (CONFIRMED)
On June 6, 2012 at 8:06am CST, LinkedIn posted a tweet that they are investigating these reports.
Be sure to follow https://twitter.com/#!/LinkedIn for updates. You can view updated on the above tweet at https://twitter.com/LinkedIn/status/210356987576324096.
For security reasons, it is strongly advised that you change your LinkedIn password ASAP.
How to Change Your Password at LinkedIn:
- Go to http://linkedin.com
- Login to your account
- Click on your name in the top right corner to access the dropdown
- From the dropdown, click on “Settings”
- On the left side of the page under your primary email, click “Change” next to Password
- Follow the onscreen instructions and change to a strong, unique, hard-to-guess password.
A big shout out goes out to Tony Perez of Sucuri for making us aware via Facebook and on his post “Public Service Announcement: LinkedIn Users Change Your Passwords.”
#1 UPDATE FROM LINKEDIN TWITTER 6/6/2012 AT 10:18AM CST
#2 UPDATE FROM LINKEDIN VIA TWITTER 6/6/2012 AT 1:12PM CST
#3 UPDATE FROM LINKEDIN TWITTER 6/6/2012 AT 2:39PM CST
Confirmed Accounts Compromised – New article: An Update on LinkedIn Member Passwords Compromised
#4 UPDATE FROM 6/7/2012 at 12:23PM CST
Phishing emails are been reported that appear to be from LinkedIn with a Sign In button. Do not click any links in any email that appears to come from LinkedIn. LinkedIn has clearly stated there will be no links in their emails.
These members will also receive an email from LinkedIn with instructions on how to reset their passwords. There will not be any links in this email. Once you follow this step and request password assistance, then you will receive an email from LinkedIn with a password reset link.
~ Source LinkedIn
To update your account, login at http://linkedin.com
Note: If you are unfamiliar what phishing emails are, they are fake emails that look legit from a company and/or person you know. The From address and the text may look normal, but the links are spoofed to go somewhere else. To see where hyperlinks are directed, you can put your mouse over links and look at your browser's status bar to see where it is linked to or look at the source code. Be careful when clicking links, they could open up an dangerous website that could infect your computer and/or steal your data.
For more information, see Sucuri's post: Publich Service Announcement: LinkedIn Spear Phishing Attempts
Leave Your Feedback
If you have any questions or find out any new information about the LinkedIn passwords being stolen, please leave a comment below. Let's all help each other stay safe.
Please do your part and share this post with others to help spread awareness.