In June 2012 more news about LinkedIn have appeared in the international press according to which LinkedIn, the professional networking website, is investigating claims that 6.5 million of its users’ passwords have been stolen and published on a Russian computer hacking forum. The list of examples goes on: Amazon-owned Zappos hacked, 24 million accounts compromisedor Sony Hacker May Have Accessed 77 Million Users’ Data, Possibly Including Credit Cards
LinkedIn offers several different types of accounts, including: free Personal Account – which is what most people use, three types of premium accounts, three types of Job Seeker Accounts. LinkedIn members are both persons and companies.
Basically, all LinkedIn accounts offer the ability to do the following:
- Ability to create a professional profile
- Helps and encourages you to develop a professional network
- You can search for jobs and people on your LinkedIn account — i.e. who did you go to high school with. –What company would you like to work for.
- Send unlimited messages to your connections
- Receive unlimited requests for introductions and InMails (a private message to or from a LinkedIn member who is not your connections). You can receive these free “if” you indicated in your account and settings that you are open to receiving
- Participate in LinkedIn Groups – A great way to expand your network without directly connecting with the person
- Participate in LinkedIn Answer – this is an interactive feature that enables you to ask questions, receive input from a worldwide network of peers and experts, share your own expertise and develop your platform as an expert
Creating a LinkedIn account involves the provision with more information about you – some are considered personal (eg contacts, email address, users’password), but other are considered already public (education, professional experience, projects, publications, organizations, honors and awards, test scores, courses, patents, certifications, volunteering and causes). Here the discussion is very long because to create a LinkedIn profile means to create your CV and CV document is considered as a public document. However, it is quite risky because you can lose the access to your account (hacking attacks). In addition, someone else uses your account because you can stay logged in on multiple devices at the same time. In this case, your data can be modified, deleted or can be used in an unwanted way.
Moreover, if you want to benefit from all the services of a particular LinkedIn account, you have to pay for it using your bank data. These data is theoretically blocked whoever use your LinkedIn account, but day by day we can hear about online fraud by using all kind of technologies. One of the most popular is phishing. However, the discussion is very long.
IT specialists argue that a LinkedIn account can be stolen using cookies technology. Of course, it is not easy. A cookie is a small piece of data sent from a website and stored in a user’s web browser while a user is browsing a website. When the user browses the same website in the future, the data stored in the cookie is sent back to the website by the browser to notify the website of the user’s previous activity. Cookies were designed to be a reliable mechanism for websites to remember the state of the website or activity the user had taken in the past. This can include clicking particular buttons, logging in, or a record of which pages were visited by the user even months or years ago etc. Regarding these, cookies are not a LinkedIn specific risk. Almost all websites are using this technology, but the LinkedIn problem is this cookie does not expire one year from the date it was created. Most commercial websites use a timeout period of 24 hours. There are a few exceptions: banking sites logout user after 2 or 10 minutes of inactivity
One more thing….
The impact of these risks on LinkedIn members (persons or companies) can be easily understood from what I mentioned above. But what does it mean for LinkedIn? The impact of these risks affects, first of all, but not only, marketing/communication of this company. Last year (June – December 2012) the internet was full of news about LinkedIn information leakage which has compromised 6.5 million accounts (6.5 Million Encrypted LinkedIn Passwords Leaked Online or LinkedIn Confirms Password Breach, Phishing Intensifies This kind of news creates – first of all and not only – concern among its members because of personal data.
In conclusion, the risk using a LinkedIn account is not so high, primarily because of the information requested. LinkedIn is a professional website and has published all updated versions of everything related to privacy. In other words, LinkedIn fulfills its legal obligation to inform its members or potential members about this issue. That’s why LinkedIn has 225 million members. LinkedIn risks mean Social Media risks, but are not so big like Facebook or Twitter risks.
It is up to you if you want to know more about your privacy.
Thanks for this task. I will change the password for my LinkedIn account and I will review my professional network.