What seemed to be almost 6.5m encrypted LinkedIn passwords were posted in a Russian forum – without the corresponding usernames – by someone claiming to have hacked into the website.
LinkedIn took to fellow social network Twitter to say: “Our team is currently looking into reports of stolen passwords.”
In a blog post last night, the company confirmed that “some of the passwords” corresponded to LinkedIn accounts but declined to specify numbers.
The New York-listed business networking website said it “sincerely apologises” for the inconvenience to its 160m-plus members.
The news came just hours after researchers accused LinkedIn’s iOS app of breaching users’ privacy by accessing their calendar information without express permission.