Late last Wednesday (May 25), LinkedIn casually sent a note to its customers that opened with one of the least-calming phrases possible: “You may have heard reports recently about a security issue involving LinkedIn.” It continued to say, in effect, “Let us now distort and misrepresent those reports to make us sound as good as possible.”  

The upshot of the notice was that LinkedIn was breached back in 2012 and that much of that stolen information has now resurfaced and is being used. From the LinkedIn notice: “We took immediate steps to invalidate the passwords of all LinkedIn accounts that we believed might be at risk. These were accounts created prior to the 2012 breach that had not reset their passwords since that breach.” 

To read this article in full or to leave a comment, please click here