Published: June 7, 2012
A Russian forum user published almost 6.5 million LinkedIn encrypted passwords as a proof that he has hacked that social network, obtaining both usernames and passwords. Although the usernames were not published by the hacker, LinkedIn confirmed yesterday in a blog post that the published passwords correspond to LinkedIn accounts.
At this moment the file containing the passwords is widely spread, but the passwords in it are not directly readable because they are encrypted with a cryptographic hash function called SHA-1.
LinkedIn stated that compromised passwords will no longer be valid and that the owners of compromised accounts will receive an email with instructions on how to reset their passwords.
By ROM Cartridge. Image Courtesy of Shekhar_Sahu via Flickr