UK-based music website Last.fm is investigating a password breach just days after LinkedIn revealed over six million of its users’ passwords were leaked.
Graham Cluley, security expert at Sophos, spoke to the BBC about the possibilty that the sites could have shared the same vulnerability.
"Can it be coincidence? It seems unlikely to me. There's a mystery in the middle of the LinkedIn breach about how they got the data. You have to worry there's a common vulnerability.”
Last.fm is alerting its users to the security breach by placing a banner along the top of its website, urging users to change their password.
The site released a statement yesterday saying: “We are currently investigating the leak of some Last.fm user passwords. This follows recent password leaks on other sites, as well as information posted online. As a precautionary measure, we’re asking all our users to change their passwords immediately.”
Want to receive up-to-the-minute tech news straight to your inbox? Then click here to sign up for the completely free PCR Daily Digest and Newsflash email services. You can also follow PCR on Twitter and Facebook.