Last.fm and eHarmony passwords leaked on the web

Following the trend started by LinkedIn two days ago, the popular music website Last.fm and the dating website eHarmony have issued an alert to all customers asking them to change their password because of leaked passwords.

Last.fm has issued the following warning on their website and points out that they are not the only ones with this problem. Well… we know now.

 

Here is a part of the text:

Last.fm Password Security Update

7th June 2012

We are currently investigating the leak of some Last.fm user passwords. This follows recent password leaks on other sites, as well as information posted online. As a precautionary measure, we’re asking all our users to change their passwords immediately.

 

eHarmony has published on their blog a similar warning :

After investigating reports of compromised passwords, we have found that a small fraction of our user base has been affected. We are continuing to investigate but would like to provide the following actions we are taking to protect our members.

As a precaution, we have reset affected members passwords.

 

It appears that the world seems to go crazy… but I am afraid that this is only the beginning. I have some feelings that these breaches are related: either the same hackers or the same type of problem which got exploited.

 

As usual already: please change your password immediately on these websites and, if you used the same password on these websites and on your email account, please change that password too.

Sorin Mustaca

Data Security Expert