[LINK] Millions of LinkedIn passwords leaked online
Fernando Cassia
fcassia at gmail.com
Wed Jun 13 14:40:33 AEST 2012
On Wed, Jun 13, 2012 at 1:34 AM, Bernard Robertson-Dunn
<brd at iimetro.com.au>wrote:
> It says my old LinkedIn password (only used on LinkedIn) was in the
> 6.5million,
>
> I tried some slight variations to see what it would do and they all came
> up as negative - i.e not in the 6.5million
>
It computes the encrypted password in Javascript (ie in the browser, not
the server) and then submits it to the server for comparison with the
leaked database.
When I first heard of the news, I changed my LinkedIn password immediately.
Then I heard about that site and checked my old password. It turns out it
wasn't part of the leaked database.
FC
More information about the Link
mailing list