The same hackers responsible for the theft of over 6.4 million LinkedIn passwords also acquired passwords from the popular dating site eHarmony.
"After investigating reports of compromised passwords, we have found that a small fraction of our user base has been affected," eHarmony's Becky Teroka wrote on the company blog yesterday evening. According to the Los Angeles Times, 1.5 million passwords were stolen. That's significantly less than the 6.4 million LinkedIn passwords, but still a considerable amount of eHarmony's 20 million users.
The Russian hacker responsible uploaded the encrypted passwords to a Russian-language website forum. Many of them have been cracked, and while the usernames are not posted, security experts believe the hackers are in possession of that information as well.
Similar to LinkedIn, eHarmony has reset the passwords for those with compromised accounts. If you're such a user, you will be prompted to change your password next time you attempt to log in to the site.
Still, if you're a LinkedIn or eHarmony user you should still change your password. Additionally, if you have used that password on other sites or services, you should change that password on those sites as well.