garyopa
06-08-2012, 07:49 AM
1.5 million unsalted MD5 hashes, according to yesterday report.
http://www.maxconsole.com/maxconsole/contents/RKLS0000009895/icon_xl.jpg
If you remember, the LinkedIn hacker 'also stole 1.5m passwords from eHarmony'.
Now, the Dating Site has confirmed that 'a small fraction of their user base has been affected'.
After yesterday report about 6.46 million LinkedIn Password Hashes leaked Online (http://www.maxconsole.com/maxcon_forums/showthread.php?189276-6.46-million-LinkedIn-Password-Hashes-leaked-Online!), dating site eHarmony has confirmed that "a small fraction of their user base has been affected".
However, reports suggested that the "LinkedIn hacker" also 'stole 1.5m passwords from the dating site'. Meaning that, it isn't a really "small fraction".
In any case, they said they would contact affected members and reset their passwords. Here's their official statement:
The security of our customers’ information is extremely important to us, and we do not take this situation lightly.
After investigating reports of compromised passwords, we have found that a small fraction of our user base has been affected.
We are continuing to investigate but would like to provide the following actions we are taking to protect our members.
As a precaution, we have reset affected members passwords.
Those members will receive an email with instructions on how to reset their passwords.
We recommend all members to practice these robust password security tips:
• Create a strong password of at least 8 characters, composed of lowercase and uppercase letters and numbers
• Create different passwords for each of the Internet sites you use
• Change your passwords every few months
Please be assured that eHarmony uses robust security measures, including password hashing and data encryption, to protect our members’ personal information.
We also protect our networks with state-of-the-art firewalls, load balancers, SSL and other sophisticated security approaches.
We deeply regret any inconvenience this causes any of our users.
So, there you go. If you use this site make sure to follow the above indications ASAP!
NEWS SOURCE #1: LinkedIn hacker also stole 1.5m passwords from dating site eHarmony (via) TeleGraph (http://www.telegraph.co.uk/technology/news/9316218/LinkedIn-hacker-also-stole-1.5m-passwords-from-dating-site-eHarmony.html)
NEWS SOURCE #2: Update on compromised passwords (via) eHarmony (http://advice.eharmony.com/blog/2012/06/06/update-on-compromised-passwords/)
Our thanks to 'Gauss' for this news item!
http://www.maxconsole.com/maxconsole/contents/RKLS0000009895/icon_xl.jpg
If you remember, the LinkedIn hacker 'also stole 1.5m passwords from eHarmony'.
Now, the Dating Site has confirmed that 'a small fraction of their user base has been affected'.
After yesterday report about 6.46 million LinkedIn Password Hashes leaked Online (http://www.maxconsole.com/maxcon_forums/showthread.php?189276-6.46-million-LinkedIn-Password-Hashes-leaked-Online!), dating site eHarmony has confirmed that "a small fraction of their user base has been affected".
However, reports suggested that the "LinkedIn hacker" also 'stole 1.5m passwords from the dating site'. Meaning that, it isn't a really "small fraction".
In any case, they said they would contact affected members and reset their passwords. Here's their official statement:
The security of our customers’ information is extremely important to us, and we do not take this situation lightly.
After investigating reports of compromised passwords, we have found that a small fraction of our user base has been affected.
We are continuing to investigate but would like to provide the following actions we are taking to protect our members.
As a precaution, we have reset affected members passwords.
Those members will receive an email with instructions on how to reset their passwords.
We recommend all members to practice these robust password security tips:
• Create a strong password of at least 8 characters, composed of lowercase and uppercase letters and numbers
• Create different passwords for each of the Internet sites you use
• Change your passwords every few months
Please be assured that eHarmony uses robust security measures, including password hashing and data encryption, to protect our members’ personal information.
We also protect our networks with state-of-the-art firewalls, load balancers, SSL and other sophisticated security approaches.
We deeply regret any inconvenience this causes any of our users.
So, there you go. If you use this site make sure to follow the above indications ASAP!
NEWS SOURCE #1: LinkedIn hacker also stole 1.5m passwords from dating site eHarmony (via) TeleGraph (http://www.telegraph.co.uk/technology/news/9316218/LinkedIn-hacker-also-stole-1.5m-passwords-from-dating-site-eHarmony.html)
NEWS SOURCE #2: Update on compromised passwords (via) eHarmony (http://advice.eharmony.com/blog/2012/06/06/update-on-compromised-passwords/)
Our thanks to 'Gauss' for this news item!