Over 700 million LinkedIn users’ data was recently offered for sale by a hacker named “GOD User TomLiner.” The advertisement posted on June 22 shares a sample of 1 million records as proof. Although passwords are not included, the data contains email addresses, full names, phone numbers, physical addresses, and details on other social media accounts. This information could be used to craft phishing emails and social engineering attacks.
We recommend that all employees utilizing LinkedIn are aware that they may become victims of these types of attacks and that they go through social engineering awareness training and review basic tips to keep themselves safe. The data stolen could also be used for identity theft, so we recommend that employees monitor their credit reports.
Pondurance customers benefit from our 24/7 Managed Detection and Response (MDR) services to reduce the risk of data breaches and our vulnerability management services to identify high-risk vulnerabilities.