Date:07/06/12
Social networking website LinkedIn has said some of its members' passwords have been "compromised" after reports that over six million' passwords had been leaked onto the internet.Hackers posted a file containing encrypted passwords onto a Russian web forum.
They have invited the hacking community to help with decryption.LinkedIn, which has over 150 million users, said the leaked passwords would no longer be valid.
Members would receive an email with instructions on how to reset them, the company said. Users would then receive a second email with further details about how why the change was necessary, it added.
Privacy concern
The news comes as LinkedIn was forced to update its mobile app after a privacy flaw was uncovered by security researchers. Skycure Security said the the mobile app was sending unencrypted calendar entries to LinkedIn servers without users' knowledge.
The information included meeting notes, which often contain information such as dialling numbers and passcodes for conference calls. In response LinkedIn said it would "no longer send data from the meeting notes section of your calendar".
The company stressed that the calendar function was an opt-in feature.
However, the researchers who uncovered the flaw said the transmission of the data to LinkedIn's servers was done without a "clear indication from the app to the user".
In a statement posted on the company's blog, LinkedIn's mobile product head Joff Redfern said a new "learn more" link would be added to the app so users have a clearer picture about how their information is being used and transmitted.
LinkedIn passwords leaked by hackers
Social networking website LinkedIn has said some of its members' passwords have been "compromised" after reports that over six million' passwords had been leaked onto the internet.Hackers posted a file containing encrypted passwords onto a Russian web forum.They have invited the hacking community to help with decryption.LinkedIn, which has over 150 million users, said the leaked passwords would no longer be valid.
Members would receive an email with instructions on how to reset them, the company said. Users would then receive a second email with further details about how why the change was necessary, it added.
Privacy concern
The news comes as LinkedIn was forced to update its mobile app after a privacy flaw was uncovered by security researchers. Skycure Security said the the mobile app was sending unencrypted calendar entries to LinkedIn servers without users' knowledge.
The information included meeting notes, which often contain information such as dialling numbers and passcodes for conference calls. In response LinkedIn said it would "no longer send data from the meeting notes section of your calendar".
The company stressed that the calendar function was an opt-in feature.
However, the researchers who uncovered the flaw said the transmission of the data to LinkedIn's servers was done without a "clear indication from the app to the user".
In a statement posted on the company's blog, LinkedIn's mobile product head Joff Redfern said a new "learn more" link would be added to the app so users have a clearer picture about how their information is being used and transmitted.
Views: 935
©ictnews.az. All rights reserved.
Similar news
- Cellphone Use May Raise Cancer Risk
- Australian police pushes cyber safety education
- Vietnam aims to lead in e-government
- Senate Website Gets Hacked
- US builds net for cyber war games
- Japan enacts anti-computer virus law
- India passes law vs e-waste
- Anonymous Declares War On The City Of Orlando
- Microsoft highlights evolving dangers as online identity data proliferates
- Consumers want internet security to be provided by banks
- Government facilities targets of cyber attack
- South Korean web attacks might been war drill
- Sri Lanka to Establish National Passport Database to Increase Border Security
- Hi-tech crime agencies set to employ information security professionals
- Phone hacking and online campaign bring down the News of the World
