Welcome, Guest. Please login or register.
Amiga Kit Amiga Store Iridium Banner AMIStore App Store A1200/A600 4xIDE Interface

AuthorTopic: linkedin.com password hashes leaked - change your password  (Read 3330 times)

0 Members and 1 Guest are viewing this topic.

Offline Speelgoedmannetje

Re: linkedin.com password hashes leaked - change your password
« Reply #15 on: June 06, 2012, 11:49:04 PM »
Quote from: LoadWB;695458
Salted or not, I'm just happy to find out that they DO hash their passwords instead of storing them in plain-text.  I had a complex password before, and now it's even more complex.  Makes using the mobile site difficult but, oh well.

I just saw today KeePass, a password manager is available as well on smartphones :)
And the canary said: \'chirp\'
 

Offline Duce

  • Off to greener pastures
  • Hero Member
  • *****
  • Join Date: Jul 2009
  • Posts: 1699
  • Total likes: 0
    • http://amigabbs.blogspot.com/
Re: linkedin.com password hashes leaked - change your password
« Reply #16 on: June 06, 2012, 11:55:24 PM »
KeePass is great, highly recommended.
 

Offline F1Lupo

Re: linkedin.com password hashes leaked - change your password
« Reply #17 on: June 07, 2012, 12:22:36 AM »
ah that's why I've been getting spam emails form linkedin this past week!

thanks for the heads up Piru
____________________________________________________________________
c64-dual sids, A1000, A1200-060@50, A4000-CSMKIII
Indivision AGA & Catweasel MK4+= Amazing
! My Master Miggies-Amiga 1000 & AmigaOne X1000 !
--- www.mancave-ramblings.blogspot.ca ---
  -AspireOS.com & Amikit- Amiga for your netbook-
***X1000- I BELIEVE *** :angel:
 

Offline Pete_Noir

Re: linkedin.com password hashes leaked - change your password
« Reply #18 on: June 07, 2012, 12:39:06 AM »
Thanks for the heads up, didn't hear about this. According to http://mashable.com/2012/06/06/linkedin-passwords-hacked-confirmation/  if your account was one of those compromised, you won't be able to log in and you should get an email from LinkedIn. I didn't get an email, but I've still changed my password anyway :)
 

Offline LoadWB

Re: linkedin.com password hashes leaked - change your password
« Reply #19 on: June 07, 2012, 02:08:10 AM »
Quote from: Speelgoedmannetje;695533
I just saw today KeePass, a password manager is available as well on smartphones :)


Thanks.  Generally speaking I dismiss recommendations like this because I don't run Phone, Android, or iPhone, so some of my capabilities are stymied by my insistence on sticking with a feature phone.

Lo and behold!

KeePass for J2ME | Free software downloads at SourceForge.net
http://sourceforge.net/projects/keepassj2me/
 

Offline persia

Re: linkedin.com password hashes leaked - change your password
« Reply #20 on: June 07, 2012, 02:50:43 AM »
Given the wankfest LinkedIn is, how would you know it was hacked?
[SIGPIC][/SIGPIC]

What we\'re witnessing is the sad, lonely crowing of that last, doomed cock.
 

Offline Ami_GFX

Re: linkedin.com password hashes leaked - change your password
« Reply #21 on: June 07, 2012, 04:52:17 AM »
A whole bunch of passwords changed. If it wasn't necessary, it was time anyway.
A2500 owned since 1993 with A2630/DKB 2632, DKB Megachip, GVP EGS Spectrum, A2320 and GVP HC+8 on the inside and a DCTV on the outside. A4000D with CSPPC, Cybervision 64 and a Flicker Magic flicker fixer. A4000T Toaster Flyer & CSMKII. All systems completly retro and classic and mostly used to do geometic art as in my avatar.
 

Offline LoadWB

Re: linkedin.com password hashes leaked - change your password
« Reply #22 on: June 07, 2012, 07:34:16 AM »
Welp, dammit, my password is definitely in the list.
 

Offline Piru

  • \' union select name,pwd--
  • Hero Member
  • *****
  • Join Date: Aug 2002
  • Posts: 6946
  • Total likes: 0
    • http://www.iki.fi/sintonen/
Re: linkedin.com password hashes leaked - change your password
« Reply #23 on: June 07, 2012, 07:30:15 PM »
It appears that last.fm passwords might have been leaked as well: http://www.last.fm/passwordsecurity
 

Offline Duce

  • Off to greener pastures
  • Hero Member
  • *****
  • Join Date: Jul 2009
  • Posts: 1699
  • Total likes: 0
    • http://amigabbs.blogspot.com/
Re: linkedin.com password hashes leaked - change your password
« Reply #24 on: June 07, 2012, 08:12:21 PM »
If you are curious of the status of your now hopefully changed PW/account, visit:

http://leakedin.org/

Examine the source if you are wary of such things, and obviously do not enter your new PW.
 

Offline Piru

  • \' union select name,pwd--
  • Hero Member
  • *****
  • Join Date: Aug 2002
  • Posts: 6946
  • Total likes: 0
    • http://www.iki.fi/sintonen/
Re: linkedin.com password hashes leaked - change your password
« Reply #25 on: June 07, 2012, 08:28:33 PM »
Quote from: Duce;695641
If you are curious of the status of your now hopefully changed PW/account, visit:

http://leakedin.org/

Examine the source if you are wary of such things, and obviously do not enter your new PW.
I recommend you do not. If your password hash wasn't leaked before, it will be after you use this "service".

The site also incorrectly claims your password is not yet cracked. "Your password was leaked, but it has not (yet) been cracked."

There is no way for the site to know this, and this is thus extremely misleading.

Here's the linkedin blog post about the incident: http://blog.linkedin.com/2012/06/06/linkedin-member-passwords-compromised/
« Last Edit: June 07, 2012, 08:36:33 PM by Piru »
 

Offline Piru

  • \' union select name,pwd--
  • Hero Member
  • *****
  • Join Date: Aug 2002
  • Posts: 6946
  • Total likes: 0
    • http://www.iki.fi/sintonen/
Re: linkedin.com password hashes leaked - change your password
« Reply #26 on: June 07, 2012, 08:58:46 PM »
Some info about the recent leaks can be found from https://twitter.com/#!/CrackMeIfYouCan

For instance it seems that the leaks are much older than thought. Interesting stuff.
 

Offline Zac67

Re: linkedin.com password hashes leaked - change your password
« Reply #27 on: June 07, 2012, 09:25:52 PM »
If you need to find out whether your password has leaked, you can safely use PHP's sha1() function and then google the hash.

I've already found mine but that didn't really surprise me since it's probably among the first 1000 tested in a dictionary attack anyway - LinkedIn didn't seem to require a more 'serious' password, and right I was as it seems.