LinkedIn Hack results in passwords for sale

We all know that password management can be a pain in the butt.  However, here is a story that may motivate you to update your passwords and keep them strong.

Synopsis:  LinkedIn was hacked back in 2012.  4 years later, 167 million user names and passwords are for sale.  The incident proved that LinkedIn stored passwords in an insecure way and that the company did not make it known exactly how widespread the data breach was at the time.

Since we cannot completely trust companies like LinkedIn and Facebook to protect our accounts, there are some simple things we must do to minimize risk.

I recommend:

  • Change your LinkedIn password (especially if it has not been changed in 4 years)
  • Use strong passwords (10-12 characters in length with numbers, capitalization, lower case letters, and symbols; avoid birthdays and addresses, etc.)
  • Do not use the same password for all your accounts.
  • Consider using 2-factor authentication