How does LinkedIn use user data

A hacker sells the user data of 500 million LinkedIn users online

Sad to say, but it seems like hacking is becoming more common as the coronavirus pandemic worsens.

Verizon said that personal information was involved in about half (58 percent) of cybersecurity breaches over the past year. Well, if there is any indication of what's to come in early 2021, this year isn't going to look much better.

Another large social media platform compromised part of its user base.

Hacker wants four numbers for a database with 500 million LinkedIn users

On April 6th, Cybernews reported that an archive of user data from 500 million LinkedIn profiles had been posted on the unnamed "popular hacking forum". And in case you don't believe the records are legitimate, the post author also leaked two million records as a proof-of-concept example.

The data collected from LinkedIn profiles include LinkedIn IDs, full names, job titles, addresses, phone numbers, genders, and links to social media profiles.

Viewing the example costs other forum users around $ 2 worth of forum credits. The hacker seems to be charging thousands of dollars for the entire database. "I also sell 500 million profiles, PM [private message] me for 4-digit $$$$ reserve price," they write.

On April 8, a LinkedIn Pressroom post confirmed that the data sold on this forum was not captured by a data breach.

We investigated (...) and found that it was actually an aggregation of data from a number of websites and companies. It contains publicly visible member profile data that appears to have been removed from LinkedIn. This was not a breach of LinkedIn data, and no LinkedIn private member account information was included in what we were able to verify.

At the time of writing, it is unclear whether the 200 million records are linked to Golden Chicken, the group of hackers who reportedly sent fake job postings on LinkedIn.

Does LinkedIn also need to tighten its security?

While it is a relief (at least in some way) that the user data shared on the forum is aggregated and not as a result of a recent LinkedIn violation, it could nonetheless be a sign that LinkedIn should improve its security. A good recent example is Twitter, which now allows you to use multiple physical keys to log in.

This unfortunate event reflects the recent re-release of the 2019 data hacked by Facebook, which hit multiple branches as a "new" leak. When the story was first published, people thought it was another security breach.

In addition, you can use Cybernews' free online personal data leak search to determine whether your email address was disclosed in this data leak or other security breach. The company claims it is looking for your address in a library of more than 15 billion breached records.