Security News > 2021 > April > Data scraped from 500 million LinkedIn users found for sale online
A massive trove of LinkedIn account data has been found for sale online, containing 500 million user records including email addresses, phone numbers, links to other social media profiles and professional details.
CyberNews researchers were able to confirm that the data contained in the sample was legitimate, but added that " it's unclear whether the threat actor is selling up-to-date LinkedIn profiles, or if the data has been taken or aggregated from a previous breach suffered by LinkedIn or other companies.
Included in the leaked data was "a variety of mostly professional information," including LinkedIn IDs, full names, email addresses, phone numbers, user gender, links to LinkedIn profiles, links to other connected social media profiles, professional titles and other work-related data.
LinkedIn describes itself as having nearly 740 million users; if the leaker selling this batch of stolen data is telling the truth, then it's safe to assume anyone with a LinkedIn account could be among the 500 million leaked records.
Changing LinkedIn account passwords and email account passwords associated with LinkedIn profiles.
Enabling two-factor authentication on LinkedIn accounts and any other account that offers 2FA.Being wary of LinkedIn messages and connection requests from unknown people.