Errors of the past may come back to haunt you. Be safe. Be proactive.
LinkedIn’s user database was hacked in 2012 but the day was not released until May of this year. The result is that about 164 million usernames and passwords have been compromised. If you use LinkedIn, you would already have changed your LinkedIn password and your account is safe. Perhaps more importantly though, if you have used that password for any other online services, your security may be at risk there as well.
We recommend that you take the following remedial action:
- Login and change your LinkedIn password immediately. Ensure your password is unique and strong:
- Use a combination of letters and numbers, upper and lower case characters, and punctuation symbols
- Make the password 8-10 characters in length
- Do not reuse the password anywhere else
- If your old LinkedIn password was used for any other accounts, login to those accounts and repeat the above steps.
- For highly sensitive accounts such as Google/Gmail, banking, or PayPal, implement 2-Factor Authentication (2FA). This requires that any sign in from a new device or location will require you to enter a second, one-time use code that is sent to your phone via text message.
- Visit https://haveibeenpwned.com/ and check to see if your email address or username appears on any lists of leaked passwords. You can also register your email address and receive an email alert if it appears in the future, allowing you to respond immediately.