Skip to main content

LinkedIn provides update on data breach and security tips for members

russia blocks linkedin app linkedinhq
LinkedIn is providing fresh information on its security issues and the steps it has taken to protect its members. The social network sent out a group email earlier today addressing the data breach that saw millions of passwords leaked to the internet last week.

Upon learning of the leak, LinkedIn states that it invalidated the passwords at risk. It had already been confirmed that the breach itself took place in 2012 and reportedly saw 167 million LinkedIn account records hacked.

Related Videos

The career-oriented platform in its statement added that the accounts that were targeted were all created prior to the 2012 breach, and that no passwords have been reset since then.

The statement also detailed the extent of the information that was stolen. According to LinkedIn the data included email addresses and member IDs — the latter are a form of internal identifier assigned to each account.

The initial criticism directed toward the company centered on its weak password protection tools, in particular the fact that the data was not salted. In response, LinkedIn claims that it now uses salted hashes to store passwords. It also indicated that it offers an added form of protection in the form of its dual-factor authentication option.

“We are using automated tools to attempt to identify and block any suspicious activity that might occur on LinkedIn accounts,” reads the email. “We are also actively engaging with law enforcement authorities.”

In a prior update, the platform claimed that it had demanded that third parties put a stop to leaking its password data, and that it would pursue legal action if they failed to comply.

For those still worried about account security, LinkedIn’s chief information security officer, Cory Scott, has the following words of advice: “We encourage our members to visit our safety center to learn about enabling two-step verification, and to use strong passwords in order to keep their accounts as safe as possible.”

Editors' Recommendations

A beginner’s guide to Tor: How to navigate the underground internet
A person using a laptop at a desk.

While the internet has dramatically expanded the ability to share knowledge, it has also made issues of privacy more complicated. Many people are justifiably worried about their personal information being stolen or viewed, including bank records, credit card info, and browser or login history.

If you're looking for more privacy while browsing, Tor is a good way to do that, as it is software that allows users to browse the web anonymously. It should be noted that Tor can be used to access illegal content on the dark web, and Digital Trends does not condone or encourage this behavior.
Why does Tor exist?
In this climate of data gathering and privacy concerns, the Tor browser has become the subject of discussion and notoriety. Like many underground phenomena on the internet, it is poorly understood and shrouded in the sort of technological mysticism that people often ascribe to things like hacking or Bitcoin.

Read more
Hack involved the data of a nation’s entire population
A depiction of a hacker breaking into a system via the use of code.

Hackers are well known to nab customer data held by companies, but obtaining the personal data of pretty much all of the residents of a single nation in one fell swoop takes the nefarious practice to a whole new level.

The remarkable feat was allegedly performed by a 25-year-old Dutch hacker who, when arrested by police, had in his possession personal data linked to pretty much every resident of Austria -- about nine million people.

Read more
Hackers dug deep in the massive LastPass security breach
The LastPass logo appears in front of a menacing hooded figure.

The cybersecurity breach that LastPass owner GoTo reported in November 2022 keeps getting worse as new details are revealed, calling into question the company's transparency on this serious issue.

It has been two months since GoTo shared the alarming news that hackers stole the usernames, passwords, email addresses, phone numbers, IP addresses, and even billing information of LastPass users. In GoTo's latest blog update, the company reported that several of its other products were compromised as well.

Read more