Individuals who appear to be late last month‘■ The LinkedIn data scraping case claims to have created a database of 700 million LinkedIn users after hacking the API of a social networking platform.
BBC News states that it has identified and discussed a person who calls himself “Tomliner.”
Reiner told the publication that it took months to scrape LinkedIn data “for fun” and create a large database.
Last month, many media outlets reported on LinkedIn’s data breaches that disclosed the personal information of more than 700 million users. That’s close to 92% of everyone using the service.
News site Privacy shark He said there was a post on the hacker site Raid Forums about selling the LinkedIn database. To prove their claim, the post also included a sample of one million records.
Privacy Sharks said researchers examined the sample and found that it contained a lot of personal information, including name, gender, phone number, email address, and industry information.
LinkedIn has rejected allegations of data breaches, claiming that all data has already been published. Instead, he claimed that the information was aggregated from various sources.
Reiner told the BBC that he had already sold the database to a few customers for about $ 5,000 and all of them were happy with it.
He didn’t reveal who the customer was or what they were trying to do with that information, but said the data was likely to be used to carry out other “hacking ventures.” I guessed.
Apart from last month‘■ LinkedIn Incidents, At least 3 other major data scraping incidents have been reported in the last 6 months.
In April, hackers put up a database of about 500 million records from LinkedIn for sale. The individual requested a minimum of “4 digits” total to access the complete record.
That same week, a database of scraped information from 1.3 million clubhouse profiles was posted on the hacking forum.
And finally, also in April, data about 533 million Facebook users was dumped into a hacking forum.
These incidents have raised concerns among security experts about the increasing trend of Megascrapes.
Amir Hadžipašić, the founder of SOS Intelligence, told the BBC News that he needed more control over his API programs.
“Such a large leak is a concern given the complex details of this information, such as its geographic location and personal mobile phones and email addresses,” Amir said.
“For most people, you’ll be surprised at how much information these API enrichment services hold.”
“If a malicious person gets this information, it can have a huge impact on some people,” he added.
According to experts, criminals can use scraping incident data to create detailed profiles of potential victims to launch targeted phishing and social engineering attacks.
This information can also be used to send spam emails or email addresses associated with brute force profile passwords.