Application security, Security
October 27, 2022
Via: Computer WeeklyProfessional social network LinkedIn has announced plans to roll out a series of enhancements to its platform to protect its community from inauthentic, or even malicious, profiles and activity. Its objective is to help users make more informed decisions about […]
October 27, 2022
Via: Help Net SecurityCheck Point Research has published its Brand Phishing Report for Q3 2022, which highlights the brands which were most frequently imitated by criminals in their attempts to steal individuals’ personal information or payment credentials during July, August and September. Most […]
May 24, 2022
Via: Help Net SecurityOnline accounts getting hijacked and misused is an everyday occurrence, but did you know that account pre-hijacking attacks are also possible? Inspired by previous research on preemptive account hijacking by way of single sign-on (SSO) technology, researchers Avinash Sudhodanan and […]
April 21, 2022
Via: MalwarebytesWeb scraping—the automated extraction of data from websites—has been around for a long time. Simultaneously cursed and praised, with nobody being able to quite land the decisive blow about whether it should be allowed, one way or another. This may […]
February 16, 2022
Via: Threat PostEmotionally vulnerable and willing to offer up any information that lands the gig, job seekers are prime targets for social engineering campaigns. And with the “Great Resignation” in full swing, cybercriminals are having an easy time finding their next victim. […]
July 1, 2021
Via: Security AffairsHours ago, a 68MB JSON database containing LinkedIn data recently collected from 88,000 US business owners was shared on a popular hacker forum. According to the poster, the scrape targeted US business owners who have “changed job positions in [the] […]
April 12, 2021
Via: Security AffairsLinkedIn has issued a formal statement to deny that the recent leak that exposed the account details of more than 500 million of its registered users was caused by a security breach. A threat actor has put for sale on […]
April 8, 2021
Via: Security AffairsAn archive containing data purportedly scraped from 500 million LinkedIn profiles has been put for sale on a popular hacker forum, with another 2 million records leaked as a proof-of-concept sample by the post author. The four leaked files contain […]
February 18, 2021
Via: Help Net SecurityPhishers are trying to trick users into opening a “LinkedIn Private Shared Document” and entering their login credentials into a fake LinkedIn login page, security researcher JB Bowers warns. The phishing attack The phishing message is delivered via LinkedIn’s internal […]
August 28, 2020
Via: Security WeekActive since at least 2011, the adversary is also tracked as Ajax Security Team, APT35, ITG18, NewsBeef, Newscaster, and Phosphorus, and was previously observed targeting a U.S. presidential candidate, media organizations, government officials, and prominent expatriate Iranians, using an updated […]
Application security, Security
August 22, 2019
Via: The HillLinkedIn announced this week that it had blocked or removed 21.6 million fake accounts on its platform between January and June of this year. The professional networking platform, which has about 645 million users, wrote in a Tuesday blog post […]
July 22, 2019
Via: Security AffairsExperts at FireEye have uncovered a new espionage campaign carried out by APT34 APT group (OilRig, and HelixKitten. Greenbug) through LinkedIn. Members of the cyberespionage group were posing as a researcher from Cambridge and asking victims to join their social […]
February 22, 2018
Via: Naked SecurityWe can think of privacy policies as fortresses made out of thick bricks of gobbledygook: impenetrable, sprawling documents that do little beyond legally protect companies. Nobody reads them. Or, to be more precise, 98% of people don’t read them, according […]
April 19, 2017
Via: Hot for SecurityLinkedIn users are being warned to be on their guard following a rise in reports of attacks being distributed via email designed to trick job seekers into sharing their personal details. Scammers have spammed out email messages posing as communications […]
December 19, 2016
Via: Security WeekLynda.com, the online learning platform acquired last year by LinkedIn for $1.5 billion, started notifying customers over the weekend that a database containing user information had been accessed by an unauthorized third party. The company told customers it recently became […]
November 29, 2016
Via: Help Net SecurityMalware masquerading as an image file is still spreading on Facebook, LinkedIn, and other social networks. Check Point researchers have apparently discovered how cyber crooks are embedding malware in graphic and image files, and how they are executing the malicious […]
October 21, 2016
Via: The HillLinkedIn on Wednesday said that a Russian man arrested a day earlier in the Czech Republic was suspected of breaching the social media company’s data. “Following the 2012 breach of LinkedIn member information, we have remained actively involved with the […]
May 30, 2016
Via: SC MagazineReddit announced it would require users to reset their passwords following the release of a dataset containing 100 million LinkedIn emails and password combinations from a 2012 breach. While Reddit did not refer directly mention the release of LinkedIn data, […]
May 19, 2016
Via: Kaspersky BlogIf you cast your minds back to the summer of 2012 then you’ll vaguely remember something about LinkedIn being hacked. Data was stolen and there were plenty of red faces in the social networks office, I’m sure. Despite the huge […]
November 16, 2015
Via: Naked SecurityIf you’ve been getting more email notifications from LinkedIn than you’d like, there’s some good news from the social network: you’re going to see a lot less of them. LinkedIn announced in a blog post this week that it’s launching […]