SAN FRANCISCO–LinkedIn has confirmed that a 2012 data breach was substantially larger than the company had initially indicated.
It now says the number of LinkedIn accounts in which usernames and passwords were hacked is approximately 117 million, substantially more than the 6.5 million the company had originally reported, according to Forbes.
Forbes reported that last week fresh LinkedIn credentials went on sale on a dark web market known as The Real Deal. The same dealer, who goes by the name Peace, was offering offering 117 million LinkedIn usernames and passwords for 5 Bitcoin, worth approximately $2,200.
A LinkedIn spokesperson confirmed for Forbes that the company was looking into the matter and was in the process of resetting passwords of affected users. The company said it had no indication of another breach.
“We are taking immediate steps to invalidate the passwords of the accounts impacted, and we will contact those members to reset their passwords,” LinkedIn told Forbes.
Forbes further reported that LinkedIn said it is in the process of resetting user passwords for every member who joined before 2012 who had not changed their password since the previously reported breach.