Should You Be Worried About the LinkedIn Breach?

Wednesday, June 06, 2012

Kelly Colgan


People who rely on LinkedIn for professional networking keep a wealth of information stored on their profile pages.

With news of a possible data breach exposing 6.5 million user passwords, LinkedIn users need to take steps to protect their personal data.

Here are five tips we recommend you follow:

1. Change your password immediately. Log in to your account. Go to settings and click on "Password Change."

2. Create a strong, new password. It should have numbers, upper- and lowercase letters, and symbols. For example, “3Dogz$$!” is better than “1006.”

3. Change your password on other accounts. If you used that same password on any other accounts—say a bank account or email account—be sure to change those passwords, too.

4. Stay alert. Pay attention to any posts, website links, messages and requests; they could be scams.

5. Protect your friends. If your account is compromised, alert your close friends so they don't become victims. Contact LinkedIn to either regain control of your account or freeze it.

For more information about ways to protect yourself from identity theft on LinkedIn, check out our slideshow How You're LinkedIn to Identity Theft.

Possibly Related Articles:
Information Security
Passwords Identity Theft Social Engineering Security Awareness Access Control breach LinkedIn Account Takeover
Post Rating I Like this!
Marc Quibell Why create a strong(er) password?
Michael Johnson Thankfully this isn't such an issue where strong passwords were set. We assume the password file is easily obtainable, and this is the primary reason passwords are hashed.
Anyone with a habit of setting a strong password and changing it every few months is well covered against this anyway.
Marc Quibell I was kind of looking for the explanation "stronger passwords make it more difficult to break the encryption of a stored, hashed, password". More diffcult, and yet, still possible.

Instead of telling people to make a difficult password, I'd rather Linkedin salt the hash.
The views expressed in this post are the opinions of the Infosec Island member that posted this content. Infosec Island is not responsible for the content or messaging of this post.

Unauthorized reproduction of this article (in part or in whole) is prohibited without the express written permission of Infosec Island and the Infosec Island member that posted this content--this includes using our RSS feed for any purpose other than personal use.