Passwords Stolen From Last.FM, eHarmony And LinkedIn [Updates]

Ads by Google

The discovery of password security breaches at three popular sites has yet again reminded the web that using the same password for every site isn’t a good idea. Passwords have been stolen from millions of users of Last.FM, eHarmony and LinkedIn.

Stolen LinkedIn and eHarmony password hashes were recently uncovered when a hacker asked for help cracking stolen passwords on a public web forum. The passwords were encrypted but many of them were “unsalted” making them easier to crack. Some passwords were already cracked by the original poster and within several hours millions more had been split wide open by others.

The number of leaked passwords from these two sites is around 8 million and almost all have been cracked at this time of this writing. The list does not include account names, but security experts commenting on the breach say it’s reasonable to assume that the original hacker also has access to this information. Even if the hacker does not, the breach would allow anyone to discover the most commonly used passwords for these sites. Those passwords could then be tried against accounts at random.

More bad news rolled in shortly after when Last.fm announced that it was investigating a user password leak. The decision to investigate appears to be related to the leak of eHarmony and LinkedIn passwords. A post on the official Last.fm blog states “This follows recent password leaks on other sites, as well as information posted online. As a precautionary measure, we’re asking all our users to change their passwords immediately”.

That’s good advice. If you use these sites or have used them in the past you should immediately change your password. It’s also a good idea to change your password on any other site where you have used the same password.

Source: Ars Technica

Join live MakeUseOf Groups on Grouvi App Join live Groups on Grouvi
Web for Kids
Web for Kids
19 Members
Deep Web Communities
Deep Web Communities
33 Members
Awesome Websites
Awesome Websites
66 Members
Best Music Services
Best Music Services
25 Members
Ads by Google
Comments (14)
  • Theo Reisinger

    This seems to be a common theme lately. I feel that means more and more on why you should practice internet/password security

  • Wiry Andi

    in my opinion, a good password to use is a combination of number and character.
    and its the best if the character is capsed as well. though its hard to remember.
    anyway what does “unsalted” mean?

  • Jon Smith

    Wasnt surprised that password1 was compromised according to the site that told you what was compromised

  • Himanshu Singla

    This is a real worry because websites like Linkedin got hacked even..so nothing is secure on web…i thinkk….

  • Scutterman

    Thanks for the informative article, I don’t follow the Last.FM blog or twitter so I wouldn’t have known about this otherwise.

Load 10 more
Affiliate Disclamer

This review may contain affiliate links, which pays us a small compensation if you do decide to make a purchase based on our recommendation. Our judgement is in no way biased, and our recommendations are always based on the merits of the items.

For more details, please read our disclosure.
Affiliate Disclamer

This review may contain affiliate links, which pays us a small compensation if you do decide to make a purchase based on our recommendation. Our judgement is in no way biased, and our recommendations are always based on the merits of the items.

For more details, please read our disclosure.