Open Forum

 View Only

Security BUZZ - attacks on LinkedIn account

  • 1.  Security BUZZ - attacks on LinkedIn account

    Posted 08-25-2023 09:13

    Recently, there has been an increase in successful hacking campaigns targeting LinkedIn accounts, affecting people worldwide and resulting in many losing access to their accounts. Some victims have even been forced to pay a ransom to regain control or permanently delete their accounts. Cybercriminals find LinkedIn accounts attractive because they offer opportunities for social engineering and phishing attacks within an individual's professional network. The methods the hackers use to gain access to users' accounts are unclear. Still, they may have obtained data from a LinkedIn breach and are using it to breach accounts without two-step verification. Another method may involve using brute force tools to penetrate accounts with shorter passwords. To avoid becoming a victim, consider the following tips.

    1. Check Account Access: log into your account and confirm your continued access promptly. Also, make sure all your contact information is authentic and is yours. Contact LinkedIn support immediately if you find yourself locked out and need help recovering using your email. 
    2. Configure alerting: Set up alerting under "notifications" in "settings" to everything you can tolerate. Tune down if overwhelmed, but keep the essential flag on, regardless of how noisy it is.
    3. Check your emails: Verify your inbox for any messages from LinkedIn indicating the addition of an extra email to your account. If you didn't initiate this action and find such an email, consider it a significant warning sign. Ensure that you can still log in to your account, change your password, and remove the added email address from your contact details. 
    4. Password Security: Employ a strong and lengthy password unique to your LinkedIn account, avoiding password reuse across platforms. 
    5. Multifactor Authentication: Enabling the two-step verification feature for your LinkedIn account is highly recommended. This measure significantly enhances the security of LinkedIn.

    #ALTACyber



    ------------------------------
    Genady Vishnevetsky
    Chief Info Security Officer
    Stewart Title Guaranty Company
    Houston TX
    ------------------------------
    ALTA Marketplace