View all newsletters
Receive our newsletter - data, insights and analysis delivered to you
  1. Technology
  2. Software
June 13, 2012

LinkedIn strengthens security and apologises for stolen passwords

LinkedIn explains that passwords hacked on the website were not published with corresponding emails and says it plans to add an extra layer of security to protect members.

By Tineka Smith

Password leaked

Just last week it was revealed that 6.5 million LinkedIn passwords may have been hacked and leaked online.

Many LinkedIn users were advised to change their passwords as a precaution especially if they used the same password for more than one website.

Although the passwords were hashed some reports suggested that the encryption had been cracked for some.
LinkedIn officials said that by the end of Thursday June 7 all passwords on the published the list that LinkedIn thought posed a risk for members had been disabled.

"If your password has not been disabled, based on our investigation, we do not believe your account is at risk," said LinkedIn officials.

LinkedIn contacted members who passwords had been disabled with instructions on how to reset their passwords.

LinkedIn confirmed that compromised passwords were not published with corresponding email logins.

Content from our partners
Unlocking growth through hybrid cloud: 5 key takeaways
How businesses can safeguard themselves on the cyber frontline
How hackers’ tactics are evolving in an increasingly complex landscape

"At the time they were initially published, the vast majority of those passwords remained hashed, i.e. encoded, but unfortunately a subset of the passwords were decoded," said Vincent Silveira, Director at LinkedIn. "We are not aware of any member information being published at any time in connection with the list of stolen passwords. The only information published was the passwords themselves."

LinkedIn has stated that they now have bolstered their security to better protect LinkedIn members.

"We can confirm that all member passwords now are not only hashed, but also salted, to provide an additional layer of security," LinkedIn officials said.

"We are profoundly sorry for this incident. Member security is vitally important to us, and transparency is a priority as well. We will provide further updates as warranted by any new developments."

LinkedIn says they will continue to investigate and will keep their members updated as they upgrade security measures.

Please follow this author on Twitter @Tineka_S or comment below.

Websites in our network
Select and enter your corporate email address Tech Monitor's research, insight and analysis examines the frontiers of digital transformation to help tech leaders navigate the future. Our Changelog newsletter delivers our best work to your inbox every week.
  • CIO
  • CTO
  • CISO
  • CSO
  • CFO
  • CDO
  • CEO
  • Architect Founder
  • MD
  • Director
  • Manager
  • Other
Visit our privacy policy for more information about our services, how New Statesman Media Group may use, process and share your personal data, including information on your rights in respect of your personal data and how you can unsubscribe from future marketing communications. Our services are intended for corporate subscribers and you warrant that the email address submitted is your corporate email address.