Quantcast
Channel: Berry Cloud
Viewing all articles
Browse latest Browse all 4

FUD with LinkedIn Passwords

0
0

I think some of the FUD that the BBC are spreading on the LinkedIn security breach needs addressing.

Don’t change your LinkedIn password … yet
Sure change your LinkedIn password but the important thing is to change it once the breach has been found and secured otherwise its a bit of a pointless exercise.

Your password hasn’t been leaked
Someone has managed to get hold of 6 million hashed passwords. Having a hash of your password is not the same thing as having your password. Don’t worry too much about the hash of your password being known (assuming your password isn’t dictionary based), it will take several years (if not longer) to workout what all the passwords are for 6 million people from just the password hashes. It’s worth keeping in mind that your encrypted password is sent over the Internet every time you log on to a website, getting hold of the data that you send over the Internet isn’t hard, that’s why it’s often encrypted.

The lessons

  • Use different passwords for different sites. If that sounds like too much effort then at minimum you should use a unique password for your Internet banking, email and any site that holds your credit card details.
  • Don’t use dictionary based passwords because the hashes of these are well known.

Viewing all articles
Browse latest Browse all 4

Latest Images

Trending Articles





Latest Images