Tuesday, Jun 29, 2021, 17:43 Web

LinkedIn: Another Massive Data Breach – Almost All Users Affected

They say that lightning never strikes the same place twice... but sometimes the same person still gets hit by lightning multiple times. In April of this year, a data breach of account contacts at LinkedIn resulted in a large increase in SMS spam. In a file that was traded and later published by hackers, there were more than 500 million data records – all of which gave spammers significant ammunition. There's only recently been an even more serious incident at the company, less than three months after the last breach of data. Hackers managed to capture the data of around 700 million users via an official LinkedIn interface. About 70% of all accounts on the site were tapped into and (embarrassingly enough for the company) by way of the same attack vector as last April. Combined, the attacks account for a breach of data for 93% of all users, which is why almost every single account on the site is affected.

An Extensive Data Breach
The first few surveys of the damage revealed that the stolen data was most importantly current. A file, released on the 22nd of June contains the following data concerning users:

advertising


advertising


  • Full Name
  • Mailing Address
  • Telephone Number
  • Address
  • Geodata
  • Username & URL
  • Personal & Professional CV Including Salaries
  • Gender
  • Other Social Media Accounts & Usernames


Fortunately, the hackers were unable to gain access to passwords – although the information provided above is certainly enough to cause significant damage with. In addition to targeted spam, fishing attempts and identity theft are also concerns.

Still No Official Statement From LinkedIn
LinkedIn has yet to provide a statement concerning what is now the third data breach in the company's history. In 2012, there was a successful data breach concerning 6.5 million records – including passwords. However, the fact that there have now been two breaches within a quarter of a year is bad news for LinkedIn and could affect the company's reputation if it doesn't react quickly. At the very least, hackers are claiming to have gained access to the most recent data in the same manner as the last data breach. This claim has yet to be confirmed.

More mtech.news articles you might enjoy to read: