Data including phone numbers, physical addresses, geolocation and supposed salaries for over 700mn people on LinkedIn has reportedly been advertised for sale on the dark web, with a published sample of 1mn users allegedly verified as accurate.
The hacker who obtained the data has posted a sample of 1M records, and checks confirm that the data is both genuine and up-to-date. The network released a statement playing down their vulnerability :
“This was not a LinkedIn data breach and our investigation has determined that no private LinkedIn member data was exposed.”
No passwords are included, but as the site notes, this is still valuable data that can be used for identity theft and convincing-looking phishing attempts that can themselves be used to obtain login credentials for LinkedIn and other sites.
LinkedIn reported a similar breach of 500mn users’ data just 3 months ago and admitted only to some data being scraped from their platform.