Hacking LinkedIn

[jamrock]

The social networking site LinkedIn was hacked recently. Computer World Magazine (www.computerworld.com) has been following the story.

More than 60% of the unique hashed passwords that were accessed by hackers from a LinkedIn password database and posted online this week have already been cracked, according to security firm Sophos.

It's very likely the remaining passwords have also been cracked, said security researcher Chester Wisniewski late Wednesday.

In all, a total of 6.5 million hashed password believed to belong to LinkedIn members was posted on a Russian hacker forum earlier this week. The crooks posted the data in an effort to get help in cracking the passwords.

http://www.computerworld.com/s/artic...edIn_passwords

Kevin Young, a computer security expert who studies passwords, is nearly at a loss for words. Literally.

Young and his colleagues are working to decode some 2.6 million scrambled LinkedIn passwords, part of a total of 6.1 million released earlier this week on a Russian password cracking forum. Young studies how people pick passwords and how resistant they are to cracking.

The data that was released were password hashes, or cryptographic representations of passwords churned through an algorithm called SHA-1. For example, if a person's password is "Rover" the SHA-1 hash would be "ac54ed2d6c6c938bb66c63c5d0282e9332eed72c."

http://www.computerworld.com/s/artic...7&pageNumber=1

[Dre']

its not just linkedin, there is Last.fm and eHormony also

[iKlsR]

password1.. XD. classic, but seriously.. hacking Linkedin is like hacking Wikipedia.. dnt see what the huge flurry is all about.

[jamrock]

hacking Linkedin is like hacking Wikipedia.. dnt see what the huge flurry is all about.

Would you understand the huge flurry if Facebook were hacked?

[Arch_Angel]

The recent LinkedIn password breach has resulted in a lawsuit that accuses the enterprise social network of failing to properly secure its users' data.

"LinkedIn violated its own User Agreement and Privacy Policy by failing to utilize long-standing industry and standard protocols and technology to protect" its members, according to the lawsuit, which was filed in California district court by Illinois resident Katie Szpyrka.

Szpyrka is looking to attain class-action status.

Read more: http://www.pcmag.com/article2/0,2817,2406069,00.asp

[mega man]

wow!! those sites use normal sha-1 encryption, facebook uses code-igniter sha-1 which is much safer but you have to be a very advance black hat to tamper with that kinda algo, these russians aren't simple at all