It’s happened to Sony and now LinkedIn is a victim. It recently had to deal with the thorny issue of stolen passwords, which has consumed their engineering teams time and resources.
“[Yesterday] we learned that approximately 6.5 million hashed LinkedIn passwords were posted on a hacker site. Most of the passwords on the list appear to remain hashed and hard to decode, but unfortunately a small subset of the hashed passwords was decoded and published,” said a LinkedIn blog post.
Some of the steps they are taking include locking down and protecting the accounts associated with the decoded passwords that they believed posed the greatest risk. LinkedIn said they have invalidated those passwords and contacted those members with a message that lets them know how to reset their passwords.
“Going forward, as a precautionary measure, we are disabling the passwords of any other members that we believe could potentially be affected. Those members are also being contacted by LinkedIn with instructions on how to reset their passwords,” said Linkedin.
The following precautionary steps are recommended by Linkedin, which actually apply to any cPanel or WordPress credentials that may apply to your shared hosting, dedicated server or reseller platforms.
- Make sure you update your password on LinkedIn (and any site that you visit on the Web) at least once every few months.
- Do not use the same password for multiple sites or accounts.
- Create a strong password for your account, one that includes letters, numbers, and other characters.
- Watch out for phishing emails and spam emails requesting personal or sensitive information
Also consider SSL certificates to lock down your administration screens on Joomla and WordPress websites. These are a relatively inexpensive way to prevent cyber criminals from compromising your accounts.
An ssl is really just a digital certificate verifying your identity. Without an SSL certificate your visitors will get a warning message in their web browser. With shared SSL you use your hosting companies SSL certificate, however with private SSL you must purchase your own SSL Certificate. It essentially allows data to be passed between our server and other computers in a secure encrypted format.
You can upgrade to an SSL on Midphase platforms quickly and easily giving your sites extra layers or protection.