Personal data of 92% of users sold online of the 700 million LinkedIn users whose data was compromised, the hacker posted a million sample datasets on the dark web.
LinkedIn data from more than 700 million users was allegedly exposed in a new breach. LinkedIn has a total of 756 million users, which means that data from more than 92% of its users has been compromised in the new breach. The new dataset, obtained by an unknown hacker, would contain LinkedIn users’ personal information, including phone numbers, physical addresses, geolocation, and retained earnings. In April, LinkedIn confirmed a data breach that affected 500 million subscribers, including personal information such as email address, phone number, workplace information, full name, account ID, links to their email accounts, and -mail. Social media and gender details are listed online.
According to LinkedIn, there was no data breach, but the information was obtained through a network hack. In an email, LinkedIn told Gadgets 360: “While we are still investigating this issue, our initial analysis indicates that the dataset includes information derived from LinkedIn as well as information obtained from other sources.” A search done by LinkedIn and ours revealed that no private information of any LinkedIn member was exposed. LinkedIn data mining is a violation of our Terms of Service and we are constantly working to ensure that our members’ privacy is protected.”
The new 700 million user dataset is also for sale on the Dark Web, where the hacker has posted a sample of 1 million samples for shoppers. RestorePrivacy was the first to maintain this list on the Dark Web, and the sample data has been verified by 9to5Google. The set of sample data posted on the Dark Web includes user information such as email addresses, full names, phone numbers, physical addresses, geographic location data, LinkedIn username, and profile URL, derived earnings, experience / personal and professional background, gender, and social media – billing and usernames.
9to5Google contacted the hacker directly, claiming that the data was obtained using the LinkedIn API to collect information that people submit to the site. The dataset does not contain any passwords, but the information is still very valuable and could represent identity theft or phishing attempts. To protect your data, it’s important to pay attention to the protection, security, and privacy settings of the programs you use and make sure they’re configured correctly. Make sure you have a secure password and use it regularly to change it. Also, enable 2-factor authentication (2FA), if available, and do not accept connections from outsiders, especially on LinkedIn and Facebook. Sign up on sites like Have I Been Pwned to be notified if your email address is part of a data breach.