Business social network LinkedIn and online dating service eHarmony said on Wednesday that some of their users’ passwords were stolen and millions appear to have been leaked onto the Internet.
LinkedIn Corp did not say how many of the more than 6 million passwords that were distributed online corresponded to LinkedIn accounts. In a blog post on Wednesday, the company said it was continuing to investigate.
Graham Cluley, a consultant with UK Web security firm Sophos, recommended that LinkedIn users change their passwords immediately.
LinkedIn has a lot of information on its more than 160 million members, including potentially confidential information related to jobs being sought. Companies, recruiting services and others have accounts alongside individuals who post resumes and other professional information.
Later on Wednesday, eHarmony said the passwords of a “small fraction” of its users had been compromised.
The site, which says it has more than 20 million registered online users, did not say how many had been affected.
However, tech news site Ars Technica said it found about 1.5 million passwords leaked online that appeared to be from eHarmony users.
The dating service said on its blog that it had reset the passwords of the affected users, who would receive an e-mail with instructions on how to set new passwords. It recommended that all its users adopt “robust” passwords.
Before confirming the breach, LinkedIn issued security tips as a precautionary measure. The company said users should change passwords at least every few months and avoid using the same ones on multiple sites.
Cluley said hackers are working together to break the encryption on the passwords.
“All that’s been released so far is a list of passwords and we don’t know if the people who released that list also have the related e-mail addresses,” he said. “But we have to assume they do. And with that combination, they can begin to commit crimes.”
It wasn’t known who was behind such an attack. LinkedIn’s blog post had few details about what happened. It said compromised passwords have been deactivated, and members with affected accounts would be sent e-mails with further instructions.
While the passwords appear to be encrypted, security researcher Marcus Carey warned that users should not take solace from such security measures.
“If a Web site has been breached, it doesn’t matter what encryption they’re using because the attacker at that point controls a lot of the authentication,” said Carey, who works at security-risk assessment firm Rapid7. “It’s ‘game over’ once the site is compromised.”
Cluley warned that LinkedIn users should be careful about malicious e-mail generated around the incident.
The fear is that people, after hearing about the incident, would be tricked into clicking on links in those e-mails. Instead of getting to the real LinkedIn site to change a password, it would go to a scammer, who can then collect the information and use it for criminal activities.
LinkedIn said its e-mails would not include any links.
CREDIT-GRABBER: China said its coast guard rescued the crew of a fishing vessel that caught fire, who were actually rescued by a nearby Taiwanese boat and the CGA Maritime search and rescue operations do not have borders, and China should not use a shipwreck to infringe upon Taiwanese sovereignty, the Coast Guard Administration (CGA) said yesterday. The coast guard made the statement in response to the China Coast Guard (CCG) saying it saved a Taiwanese fishing boat. The Chuan Yu No. 6 (全漁6號), a fishing vessel registered in Keelung, on Thursday caught fire and sank in waters northeast of Diaoyutai Islands (釣魚台). The vessel left Keelung’s Badouzih Fishing Harbor (八斗子漁港) at 3:35pm on Sunday last week, with seven people on board — a 62-year-old Taiwanese captain surnamed Chang (張) and six
RISKY BUSINESS: The ‘incentives’ include initiatives that get suspended for no reason, creating uncertainty and resulting in considerable losses for Taiwanese, the MAC said China’s “incentives” failed to sway sentiment in Taiwan, as willingness to work in China hit a record low of 1.6 percent, a Ministry of Labor survey showed. The Directorate-General of Budget, Accounting and Statistics (DGBAS) also reported that the number of Taiwanese workers in China has nearly halved from a peak of 430,000 in 2012 to an estimated 231,000 in 2024. That marked a new low in the proportion of Taiwanese going abroad to work. The ministry’s annual survey on “Labor Life and Employment Status” includes questions respondents’ willingness to seek employment overseas. Willingness to work in China has steadily declined from
The Legislative Yuan’s Finance Committee yesterday approved proposed amendments to the Amusement Tax Act (娛樂稅法) that would abolish taxes on films, cultural activities and competitive sporting events, retaining the fee only for dance halls and golf courses. The proposed changes would set the maximum tax rate for dance halls and golf courses at 50 and 20 percent respectively, with local governments authorized to suspend the levies. Article 2 of the act says that “amusement tax shall be levied on tickets sold or fees charged by amusement places, facilities or activities” in six categories: “Cinema; professional singing, story-telling, dancing, circus, magic show, acrobatics
The number of pet cats in Taiwan surpassed that of pet dogs for the first time last year, reaching 1,742,033, a 32.8 percent increase from 2023, the Ministry of Agriculture said yesterday, citing a survey. By contrast, the number of pet dogs declined slightly by 1.2 percent over the same period to 1,462,528, the ministry said. Despite the shift, households with dogs still slightly outnumber those with cats by 1.2 percent. However, while the number of households with multiple dogs has remained relatively stable, households keeping more than two cats have increased, contributing to the overall rise in the feline population. The trend
RSS