YouTube player

Are we sharing too much on LinkedIn? Is it potentially providing cybercriminals access to your contact information?

Daniel Barbosa, from we live security, recently published an article on the potential risks associated with the wealth of personal information shared on LinkedIn, the world’s largest professional social network. The platform’s nature allows cybercriminals to easily gather publicly available data, including full names, phone numbers, email addresses, workplace details, and more. Criminals can leverage web scrapers to compile “contact lists” with up-to-date and valuable information, posing risks such as identity theft, business email compromise (BEC) scams, and social engineering attacks.

Web scrapers can perform various actions, such as creating lists of a company’s employees or identifying supply chain targets related to a company by reviewing interactions on social media posts. The amount of information exposed depends on users’ privacy settings, ranging from profiles that reveal no contact data outside the platform to those that make email addresses and phone numbers public.

To mitigate these risks, users are advised to configure their LinkedIn privacy settings, limiting information available to those outside their network. Additionally, users should carefully manage connection requests, review the legitimacy of connections regularly, and exercise caution in broadcasting profile updates. The analysis emphasizes the importance of striking a balance between networking and safeguarding personal information on LinkedIn to prevent unwanted contact or privacy breaches.

This segment was created for the It’s 5:05 podcast