Google Website Translator Gadget

Search This Blog

Loading...

Friday, June 8, 2012

Warning : Fake post on Linkedin ask your password not do it


This post around on Linkedin  :
=======================
"6.5 million encrypted LinkedIn passwords have leaked: Change Your LinkedIn Password Right Now!
6.5 million encrypted LinkedIn passwords have leaked: Change Your LinkedIn Password Right Now!
!! IMPORTANT & URGENT !!!
Change Your LinkedIn Password Right Now!
6.5 million encrypted LinkedIn passwords have leaked, reports Norwegian IT site Dagens IT (found via The Next Web).
 [link removed]
10 hours ago"
=====================
Following this post you will be in this website:
[link removed]
"
We have some bad news. 6.5 million LinkedIn passwords (unsalted SHA-1 hashes) were allegedly leaked, and many of those have already been cracked. (See Chris's post for more info.) Some of us were victims, and we want to help you find out if you are a victim, too.

Just provide your password (which we hash with JavaScript; view source to verify) or a SHA-1 hash of your password below, and we'll check."

NOT DO IT!!
============================================
This is a secure site to check your password

LinkedIn was hacked, confirmed by LinkedIn on 6/6/2012

LinkedIn has updated their blog indicating that there was a breach, and several LastPass staff members who used unique passwords for LinkedIn only, as well as numerous individuals not associated with LastPass, have confirmed that LinkedIn's database has indeed been hacked. 
If you have a LinkedIn account, we strongly suggest that you immediately:

https://lastpass.com/linkedin/

Wait a Minute, Why Is This Tool Safe?

You already changed your password right? You no longer use that old password anywhere else right? If not please make sure you do that first. The above tool asks you to enter your LinkedIn password, and then computes its SHA-1 hash and sends the result to LastPass.com to search the list of 6.5 million leaked password hashes. A hash is a mathematical function that is simple to perform in one direction, but very difficult to reverse. Meaning, the tool will convert your password into a series of characters in such a way that it will be very difficult to re-construct your original password. 

Only the hash of your password will be sent to LastPass.com's servers, not your actual password. This hash will not be stored or logged at all. Please view source the page if you're technically inclined. 

Note that if you used a simple password, such as one based on dictionary words, then it might be possible to reconstruct your original password. This is what all of the concern is about: the hashes of simple passwords can be easily reconstructed to reveal the original actual password. 








No comments:

Blog Archive

Ob1kenobi's shared items

google analytics