A Norwegian website has reported that 6.5 million encrypted LinkedIn passwords have been hacked and exploited, and LinkedIn users should immediately change their passwords. Some security conscious users have checked the passwords and identified that their own password was among the list – a sign of the likely authenticity of the hack.
The site was apparently hacked and the revealed passwords dumped onto a Russian site where other hackers were invited to crack the codes. It’s not a very extensive encryption which means that many of the passwords are likely out in the open. The Norwegian site that reported the problem indicated that individual hackers were reporting having solved hundreds of thousands of passwords each.
LinkedIn has indicated they are currently looking into the “reports of stolen passwords”, and will have an answer for users soon. You can see their Twitter here.