Millions of eHarmony passwords leaked



Dating site eHarmony has confirmed a password breach that has seen some members’ security compromised, though the company insists that only “a small fraction” of users are affected. The incident, which follows shortly on the heals of LinkedIn’s password leak earlier this week, has seen around 1.5m password hashes released into the wild.

“After investigating reports of compromised passwords, we have found that a small fraction of our user base has been affected. We are continuing to investigate but would like to provide the following actions we are taking to protect our members” eHarmony corporate communications manager Becky Teraoka said in a statement. “As a precaution, we have reset affected members passwords. Those members will receive an email with instructions on how to reset their passwords.”

Evidence of the leaked password haul showed up in InsidePro forums, ArsTechnica reports, with the person apparently responsible for the hack asking for help in breaking the encryption. The eHarmony credentials – just like the roughly 6.5m from LinkedIn – are secured with SHA1, which can be broken given time.

More simplistic passwords are faster to crack, hence eHarmony’s advice that users should change theirs to include “at least 8 characters, composed of lowercase and uppercase letters, numbers and symbols.” The company is yet to comment on how the passwords were acquired.

[ Source: 9HardWare ]
ADVERTISING Very Fast Download ADVERTISING
Advertising (remove)

Comments (4)

  • +1
    davidsunrise 7 Jun 2012 #

    so, where can I download the password list?

    Reply
  • 0
    Willyuio 8 Jun 2012 #

    How i can download the password list?

    Reply
  • 0
    mf1212 10 Jun 2012 #

    Millions?
    First I've heard of this eHarmony?
    I don't think they have that many users, sa probably has more users then eharmony, most likely it's a marketing ploy to get their name in the news.

    Reply
    +1
    mf1212 10 Jun 2012 #

    it's an edating site, lol well if their info was leaked maybe some of it's users will finally find what they wore looking for.

    Reply
  • Only registered users can comment