Linked In & Last.fm passwords stolen

Carter · #1 06-07-2012, 02:45 PM

Quote:

Last.fm Password Security Update

7th June 2012

We are currently investigating the leak of some Last.fm user passwords. This follows recent password leaks on other sites, as well as information posted online. As a precautionary measure, we’re asking all our users to change their passwords immediately.

Please log in to Last.fm and change your password on the settings page
If you can’t remember your password you can reset it without logging in

We will never email you a direct link to update your settings or ask for your password.

We strongly recommend that your new Last.fm password is different to the password you use on other services. For more advice on choosing a solid password we recommend: Passwords ? Good to Know ? Google

We’re sorry for the inconvenience around changing your password; Last.fm takes your privacy very seriously. We’ll be posting updates in our forums and via our Twitter account (@lastfm) as we get to the bottom of this.

The Last.fm Team

Last.fm Password Security Update ? Last.fm

Quote:

Social networking website LinkedIn is investigating claims that over six million of its users' passwords have been leaked onto the internet.

Hackers posted a file containing encrypted passwords onto a Russian web forum.

They have invited the hacking community to help with decryption.

LinkedIn, which has over 150 million users, has not released a formal statement, but tweeted: "Our team is currently looking into reports."

Later, it added: "Our team continues to investigate, but at this time we are still unable to confirm that any security breach has taken place."

Security researcher Graham Cluley told the BBC he believed the breach was genuine.

"We've confirmed there are LinkedIn passwords in the data.

"We did this by searching through the data for (hashed) passwords that we at Sophos use only on LinkedIn. We found those passwords in the data. We also saw that hundreds of the passwords contain the word 'Linkedin'.

"Our advice is to change your LinkedIn password. And if you use the same password on other accounts, change it there too."
Privacy concern

The news comes as LinkedIn was forced to update its mobile app after a privacy flaw was uncovered by security researchers.

Skycure Security said the the mobile app was sending unencrypted calendar entries to LinkedIn servers without users' knowledge.

The information included meeting notes, which often contain information such as dialling numbers and passcodes for conference calls.

In response LinkedIn said it would "no longer send data from the meeting notes section of your calendar".

The company stressed that the calendar function was an opt-in feature.

However, the researchers who uncovered the flaw said the transmission of the data to LinkedIn's servers was done without a "clear indication from the app to the user".

In a statement posted on the company's blog, LinkedIn's mobile product head Joff Redfern said a new "learn more" link would be added to the app so users have a clearer picture about how their information is being used and transmitted.

..

Ophiel · #2 06-07-2012, 02:50 PM

Why would anyone want my last.fm password? What are they going to do, pump my account full of horrible music?

...

rubyrage · #3 06-07-2012, 02:51 PM

Yeah, I saw this earlier on fb.

They estimate 6 million linkedin passwords were stolen? I can't be arsed to change mine. I don't think anyone is going to get through 6 million passwords to hit on mine.

kwhatever · #4 06-07-2012, 02:51 PM

Quote:

Originally Posted by Ophiel

Why would anyone want my last.fm password? What are they going to do, pump my account full of horrible music?

...

lol. opachie said a funny.

Carter · #5 06-07-2012, 02:56 PM

Quote:

Originally Posted by Ophiel

Why would anyone want my last.fm password? What are they going to do, pump my account full of horrible music?

...

Log in, find your email address and chance the password with your email account/paypal etc.

But I just hope they add jem and holograms to your playlist.