Millions of passwords for social networking site LinkedIn and dating site eHarmony have been leaked online.
Around 6.5 million passwords for LinkedIn were posted by an apparent hacker who was looking for help breaking the encryption of the attached email addresses. A further 1.5 million passwords appear to come from eHarmony.
Read our advice guide to protecting your personal details.
Linkedin has confirmed that some passwords may have been compromised and it is investigating the matter. In the meantime it has said it is taking the following action for affected accounts:
1. Members that have accounts associated with the compromised passwords will notice that their LinkedIn account password is no longer valid.
2. These members will also receive an email from LinkedIn with instructions on how to reset their passwords. There will not be any links in these emails. For security reasons, you should never change your password on any website by following a link in an email.
3. These affected members will receive a second email from our Customer Support team providing a bit more context on this situation and why they are being asked to change their passwords.
Follow this link to see if your password is one of the ones affected.
Which? password advice
While the passwords that have been published are only associated with encrypted email addresses, Which? recommends that all users of either website change their passwords as soon as possible. Also consider if you use the same password on other websites – if so, you should change those passwords as well.
For more advice about protecting your online accounts, read our guide to creating a secure password and our advice guide on protecting your online ID.