Photograph: Robert Galbraith/Reuters
A hacker claiming to have the log in details of millions of LinkedIn users is advertising the data for sale online.
The extensive list of user IDs and passwords, which were allegedly sourced from a cyber attack on the networking site four years ago, is being advertised on the darknet – a sub-section of the internet not accessible through normal web browsers and often a platform for illegal activity.
Around 6.5m details were posted online at that time – but LinkedIn s chief information security officer Cory Scott said he does not believe the extra data was gained as the result of a new security breach.
In 2012, LinkedIn was the victim of an unauthorised access and disclosure of some members passwords.
We are taking immediate steps to invalidate the passwords of the accounts impacted, and we will contact those members to reset their passwords.
News of the breach is the latest in a long line of cyber-attacks on major websites and companies, with telecoms firm TalkTalk and parental forum Mumsnet among those who have been the victims of security breaches in the last year.