BUSINESS NETWORKING SERVICE Linkedin has confirmed reports that millions of its users' passwords have been stolen.
The firm has posted a blog entry that acknowledges the attack and confirms that at least some of the reported 6.5 million unsalted passwords belong to its members.
"We want to provide you with an update on this morning's reports of stolen passwords. We can confirm that some of the passwords that were compromised correspond to Linkedin accounts," wrote Vicente Silveira, Linkedin director. "We are continuing to investigate this situation."
The realisation has pushed the firm into action, and it said that it has already taken steps to ensure that the compromised passwords cannot be used.
Compromised members will be sent an email with no links, it says, that asks them to visit Linkedin and begin a password change process. A follow up email will be sent to those users and will tell them a bit more about what prompted the action. We expect that it will be longer than 'We wuz hacked.'
Six and a half million passwords have been released by a hacker who posted a link to them on a hacking web site.
"Guys need you help again. link to hash it's about 118Mb," was the message that started it all, but since then a lot more words have been written on the subject.
Before it confirmed that the leak is real Linkedin posted some tips for changing passwords, and security firms have been hopping up and down, talking about the attack. µ
They're kind of cute though
No code? No problem!
The wide world of whimsy from the Alphabet Castle