Linked IN Hacked


Recommended Posts

That would be an excellent way to phish passwords, make a site like that one...

All the site would do would be to phish passwords, not the emails or usernames associated with them. The site never requests that information.

In terms of how this happened I am not sure as to the route of entry into LinkedIn's systems but the fact that user passwords were stored in unsalted hashes is pretty poor security practice.

Link to comment
Share on other sites

All the site would do would be to phish passwords, not the emails or usernames associated with them. The site never requests that information.

In terms of how this happened I am not sure as to the route of entry into LinkedIn's systems but the fact that user passwords were stored in unsalted hashes is pretty poor security practice.

True, but you could also log ip addresses to each password entry, which would gain you a little more traction on getting to that users info somewhere online..

Link to comment
Share on other sites

That would be an excellent way to phish passwords, make a site like that one...

If you're really scared, try a bunch of "passwords" first, then your own, then more "passwords", no way they can trace it. (Or you could just read the code and see that it doesn't send your password but the hash)
Link to comment
Share on other sites

The passwords are hashed, but associated with your LinkedIn username, right? In the leak? I'm making an assumption here, I don't know. I don't think the people who did the crack released this information but they might have it.

What LeakedIn.org could do is hash the password you submit, and tell you the result - if you're in the database. But it could also then update the entry in the database with the correct password. So then they would have your username and password for LinkedIn, which would be useful trying to use those credentials on other sites.

This would crack the encrypted passwords that haven't been cracked yet.

Link to comment
Share on other sites

This topic is now closed to further replies.
  • Recently Browsing   0 members

    • No registered users viewing this page.