[ad_1]
The hacker who received the data published a sample of one million records, confirming that the data is real and even recently updated, writes 9to5Mac.
RestorePrivacy reports that the hacker appears to have used LinkedIn’s official application programming interface (API) to download the data, the same method used in a similar attack on LinkedIn in April.
June 22 popular programmers announced data for the sale of 700 million LinkedIn users. A forum user posted a data sample with 1 million LinkedIn users. IT security experts RestorePrivacy examined the provided sample and found that it contained the following information:
- The. Emails
- Names and surnames
- Telephone numbers
- Physical addresses
- Geolocation data
- LinkedIn profile usernames and addresses
- Personal and professional experience
- Sex
- Other social media accounts and usernames
“Based on our analysis and comparing the provided sample data with other publicly available information, it appears that all the data is authentic and related to actual users. Also, the data appears to be up-to-date, with examples for 2020-2021. data, – publishes RestorePrivacy. – We have contacted a user who posts data for sale in an online developer forum. It states that LinkedIn’s own API was used to collect the data that users brought to this social network.
There are no passwords among the data, but as noted, this is still valuable data that can be used for identity theft attempts and fraud attempts.
Following a previous data theft, LinkedIn confirmed that 500 million records consisted of data obtained from their servers, but claimed that more than one source was used. PrivacyShark notes that the company issued a similar statement this time:
“While we are still investigating this issue, our initial analysis shows that the dataset contains information gathered from LinkedIn, as well as information from other sources. This was not a LinkedIn data breach, and our investigation found that private data of LinkedIn users was not disclosed. “Scanning LinkedIn data is a violation of our Terms of Service and we are constantly working to ensure the privacy of our users,” said LinkedIn.
But whether the hacker used the API or not, someone was able to scan millions of records, which is definitely a security breach, writes 9To5Mac.
