LinkedIn is busy assuring its users that no new data breach has ailed the professional social networking platform. Earlier this week, reports had surfaced about a security issue, wherein, data stolen from LinkedIn in 2012 was being made available online. The hacked information included member email addresses, hashed passwords, and LinkedIn member IDs, which is an internal identifier LinkedIn assigns to each member profile from 2012.
Informing its users that this was not a new security breach or hack, LinkedIn also updated on steps taken to invalidate the passwords of all LinkedIn accounts that it believed might be at risk. “We invalidated passwords of all LinkedIn accounts created prior to the 2012 breach that had not reset their passwords since that breach. In addition, we are using automated tools to attempt to identify and block any suspicious activity that might occur on LinkedIn accounts. We are also actively engaging with law enforcement authorities,” quoted a company announcement.
LinkedIn also asserted that it has taken steps to strengthen account security since 2012. For example, it now uses salted hashes to store passwords and enable additional account security by offering its members the option to use two-step verification.
