Lynda.com users are getting a free lesson in account security this morning. All 9.5 million of the site's users have been notified of a database breach. To this point, Lynda.com has only seen evidence that a relatively small percentage of its users' accounts have been compromised. Currently they pin the number at around 55,000. The attackers were also only to access a limited amount of data.
Passwords belonging to British politicians, diplomats and senior police officers have been traded by Russian hackers, it has been reported. Security credentials said to have belonged to tens of thousands of government officials, including 1,000 British MPs and parliamentary staff, 7,000 police employees and more than 1,000 Foreign Office staff, were in the troves sold or swapped on Russian-speaking hacking sites. The majority of the passwords are said to have been compromised in a 2012 hacking raid on the business social network LinkedIn, in which millions of users' details were stolen. The National Crime and Security Centre (NCSC) confirmed that its cyber security advice has been highlighted to departments in light of the discovery by the Times. In the wake of the LinkedIn attack users were advised to change their passwords on the site and any other accounts that used the same credentials.
Email addresses and passwords belonging to ministers of the British cabinet, ambassadors and police officers were stolen and sold online by Russian hackers, the Times reported. Caught in the trove of login credentials, which included tens of thousands of government-related accounts, were the passwords and emails of Education Secretary Justine Greening, Business Secretary Greg Clark and the head of the Foreign Office's IT department. Two lists of credentials linked to UK officials made their rounds on the dark web, passed around on Russian-language hacking sites. In total, more than 1,000 British Members of Parliament, 7,000 police employees and 1,000 Foreign Office officials had information exposed in the stolen datasets. The email addresses and passwords were reportedly for sale on various parts of the dark web and may have been traded several times.