LinkedIn breach: What happened?
In 2012 LinkedIn was hacked and suffered a large-scale data breach. At the time it was thought to have been resolved after LinkedIn made a mandatory password reset for all accounts believed to have been affected, however yesterday more than
100 million email and hashed password combinations for LinkedIn members were released for sale on the dark web, taken from the same 2012 theft.
These new LinkedIn credentials, made up of 117 million LinkedIn usernames and passwords, went on sale on a dark web market called The Real Deal. The dealer, known as Peace, is now offering them for 5 Bitcoins each.
A LinkedIn spokesperson has said: “We are taking immediate steps to invalidate the passwords of the accounts impacted, and we will contact those members to reset their passwords. We have no indication that this is a result of a new security breach.”
LinkedIn breach: Next steps
Following this LinkedIn breach, it is advisable that all members change their passwords, but most importantly anyone who created their account in, or prior to 2012. You can reset your LinkedIn password here.
For advice and information on secure passwords and staying vigilant with your online security, have a read of our recent blog: How to Improve your Online Security.
For the latest statement on the issue from LinkedIn, view their blog post.