BleepingComputer reports that LinkedIn has been subjected to a widespread hacking campaign, with several users reporting account hijacking and lockouts while Google search volumes concerning the LinkedIn account hacks or recovery rose by 5,000% during the last few months.
With LinkedIn's support unresponsive regarding the incident, some users have been forced to pay the ransom demanded by attackers who compromised their accounts, a Cyberint report revealed. Numerous LinkedIn accounts may have been targeted through brute-force attacks and exposed credentials, with accounts having two-factor authentication and/or strong passwords having been temporarily locked.
However, less secure LinkedIn accounts were found to have their emails replaced with one having a "rambler.ru" address. Hackers also proceeded to replace the accounts' passwords while activating 2FA before either seeking ransoms or deleting the hijacked account.
Such an account takeover campaign comes after LinkedIn unveiled new security features aimed at curbing fraudulent behavior and fake profiles.
