The professional social media site, LinkedIn, has become victim to hackers, and 6.5 million users’ passwords have been posted to a Russian hacker site. According to CNET, there are 150 million users on LinkedIn, and now millions of them may have their password stolen.
LinkedIn passwords are encrypted using an algorithm SHA-1, which is known for being very secure. However, information still may get hacked into. In addition, security researchers have found the attackers are also posting on Twitter the encrypted passwords and requesting people to help sort it out.
If a password is harder to crack, it may take the hacker much longer before they can access anything. However, those that are a bit simpler could be at risk. Sophos security expert Graham Cluley is telling the millions of LinkedIn users to change their password as a precautionary measure, according to CNET.
“Although the data which has been released so far does not include associated email addresses, it is reasonable to assume that such information may be in the hands of the criminals,” Cluley told the news source.
This isn’t the only issue LinkedIn is dealing with, just this morning it was reported the company’s iOS app is collecting full meeting notes and details from the device’s calendar and then sending them back to the company in plain text, according to The Next Web. As a result, the company posted a blog entry discussing exactly what they do with the calendar feature on their phone so if a person does not want it to send meeting notes, they can opt out. The entry also included what the company is hoping to improve on.
“We will no longer send data from the meeting notes section of your calendar event,” the entry wrote. “There will be a new “learn more” link to provide more information about how your calendar data is being used.”
Even though the average person cannot protect themselves completely from expert hackers in these situations, they can take some things into their own hands. For instance, installing computer monitoring software on a laptop can help a person locate their device in the event it was lost or stolen, while also letting the person know if anything was accessed on the computer.