We can confirm that some of the passwords that were compromised correspond to LinkedIn accounts.We sincerely apologize for the inconvenience this has caused our members. We take the security of our members very seriously.
Users affected by the theft will find that their password is no longer valid. They will receive an email explaining how to reset their passwords, but are warned not to do this by following any links in emails. LinkedIn did not say how many accounts were compromised.
A consultant at IT security and data protection firm Sophos has said that the leak of six million passwords from LinkedIn does not include the associated email addresses.
But he warned that it is "reasonable to assume that such information may be in the hands of the criminals". He advised the following:
All LinkedIn users [should] ... change their passwords as soon as possible as a precautionary step. Of course, make sure that the password you use is unique - in other words, not used on any other websites - and that it is hard to crack.
– Graham Cluley, senior technology consultant at Sophos