Having your LinkedIn account hacked can be a scary and frustrating experience. LinkedIn is an important professional networking site, so it makes sense that cybercriminals would target it. Unfortunately, LinkedIn account hacks are becoming more common. The good news is that there are steps you can take to secure your account and recover from a hack. This article explores the motivations behind LinkedIn account hacks and provides tips on prevention and recovery.
What information is at risk when a LinkedIn account is hacked?
A hacked LinkedIn account puts several types of sensitive information at risk:
- Identity information – Full name, profile photo, employment history, education history, skills, endorsements, etc. This is core profile information cybercriminals can potentially misuse for identity theft.
- Contacts – Your connections and their contact details. Hackers can use this information for social engineering attacks.
- Private messages – Hackers can impersonate you and message your connections, often to spread malware or coordinate other criminal activity.
- Login credentials – Email addresses and passwords associated with the account. Hackers can exploit these credentials to access other accounts.
In addition to putting your own information at risk, a hacked LinkedIn account also threatens your connections. Hackers can leverage your account to distribute spam, malware, and phishing scams to your network. This can harm their accounts, devices, and data.
What motivations lead hackers to target LinkedIn accounts?
Here are some of the main motivations behind LinkedIn account hacks:
- Accessing sensitive corporate data – By hacking employee accounts, hackers can dig for confidential internal communications, intellectual property, customer/sales data, and other insider information.
- Targeted social engineering – Personal details in LinkedIn help hackers craft convincing spear phishing emails and social engineering ruses against employees to infiltrate corporate networks.
- Spreading malware – By hijacking accounts, hackers can silently distribute malware-laden links and attachments to large numbers of connections.
- Building botnets – Hackers use compromised accounts to distribute spam and commands to devices that are part of botnets, which are networks of infected devices.
- Credential stuffing – Hackers take lists of leaked usernames/passwords and use them in credential stuffing attacks to break into LinkedIn accounts, which then become a gateway to breach corporate accounts.
- Spam and phishing – Hacked accounts allow hackers to more easily distribute spam and phishing scams because messages seem to come from a trusted connection.
- Identity theft – Profile details like names, headshots, employment history make LinkedIn a goldmine for identity thieves seeking to imitate real professionals as part of fraud schemes.
In summary, the sensitive personal and professional data contained in LinkedIn accounts, combined with the large networks of connections, make them prime targets that can enable several follow-on cybercrimes.
How are LinkedIn accounts compromised?
Cybercriminals use a variety of techniques to hack into LinkedIn accounts:
- Phishing – Fake LinkedIn login pages are used to steal usernames and passwords from unsuspecting victims.
- Malware/spyware – Malicious software infects devices and steals LinkedIn login credentials entered by the victim.
- Credential stuffing – Automated bot attacks that try combinations of leaked usernames and passwords on LinkedIn login pages.
- Password spraying – Similar to credential stuffing, but cycles through common passwords paired with known usernames.
- SIM swapping – Hackers take over your phone number by social engineering your mobile provider. They use the number to trigger LinkedIn password resets.
- Weak/reused passwords – Easily guessed or reused passwords make accounts an easy target for automated credential attacks.
- Poor security hygiene – Things like using public Wi-Fi for login, opening suspicious links, or not using multi-factor authentication (MFA).
Often the entry point is through some type of phishing. Data breaches also give hackers password lists to fuel credential based attacks. Enabling multi-factor authentication is the best way to defend against these techniques.
How can I tell if my LinkedIn account has been hacked?
Here are signs that your LinkedIn account may have been compromised:
- You can’t log in to your account due to changed credentials
- Password reset emails you didn’t initiate
- Messages or connection requests you didn’t send
- Changes to profile information or work history
- New job listings posted that you didn’t create
- Notifications that your account logged in from a suspicious location
- Connections reporting spam or strange messages from your account
Unexpected changes are the best indicator. Be on the lookout for any activity you didn’t directly perform. Also beware of emails, messages, or requests related to your account that just don’t seem right.
How can I prevent my LinkedIn account from being hacked?
Here are proactive steps you can take to secure your LinkedIn account:
- Use a strong, unique password – Don’t reuse passwords across accounts. Use a password manager if needed.
- Enable two-factor authentication – Add an extra layer of security so hackers need more than just a password.
- Be vigilant against phishing – Don’t click suspicious links and watch for fake LinkedIn login pages.
- Review privacy settings – Limit what profile information is publicly accessible.
- Disconnect unused apps/plugins – Revoke access to any unnecessary integrations with your account.
- Check login locations – Monitor the list of devices and locations used to access your account.
- Update old passwords – If your credentials were part of a past data breach, change them.
Practicing good security hygiene in general will also help protect your LinkedIn account. Things like keeping software updated, using antivirus tools, avoiding public Wi-Fi for sensitive logins, and being cautious when clicking links or opening attachments.
What should I do if my LinkedIn account is hacked?
Here are the steps to take if your LinkedIn account is compromised:
- Secure your account – Change your password immediately and enable two-factor authentication if you haven’t yet. This prevents further access by hackers.
- Review account activity – Check your profile, feed, messages, jobs, and advertising for any unauthorized changes.
- Notify connections – Send messages explaining your account was hacked in case they received spam or strange messages.
- Disconnect apps & plugins – Unlink any authorized apps/plugins in case the hacker added new ones.
- Scan devices – Run antivirus scans on your computers and phones to detect potential malware infections related to the hack.
- Contact LinkedIn – Use LinkedIn’s account recovery process to report unauthorized activity.
- Reset password – After regaining access to your account, reset your password again to a new, strong, unique password.
- Enable MFA – If not already on, enable two-factor authentication for an added layer of security.
- Check other accounts – Be on high alert for unauthorized activity in your other online accounts, as credentials may have been stolen.
- Report the hack – File a report with the FBI’s Internet Crime Complaint Center if funds were stolen or identities misused.
Taking quick action to secure your account and alert connections can help limit the damage. But continued vigilance is needed going forward to spot potential repercussions of the hack on other accounts and your personal information.
How can I recover a hacked LinkedIn account?
Here are the steps to recover a hacked LinkedIn account:
- Try resetting your password – Request a password reset email from LinkedIn and create a new, strong password to try to lock out the hacker.
- Use account recovery options – Go through LinkedIn’s account recovery process. This involves confirming your identity by entering codes sent to your email or phone.
- Contact LinkedIn support – If you can’t regain access through password resets or account recovery options, reach out to LinkedIn’s customer support for help recovering the account.
- Remove unauthorized changes – Once you regain access, revert any profile, job, or setting changes made by the hacker.
- Review activity logs – Check your account logs to understand the hacker’s actions while in control of your account.
- Alert connections – Let your network know about the hack in case they interacted with the hacker impersonating you.
- Strengthen security – Change your password, enable MFA, disconnect unauthorized apps, and address any security gaps that may have led to the hack.
With vigilance and persistence, you can usually recover a hacked LinkedIn account and restore it to a safe state. But it takes time to undo unauthorized changes and strengthen security to prevent it from happening again.
Can I delete a hacked LinkedIn account and start over?
If your LinkedIn account was hacked, you may wonder if it’s better to just delete the account and start fresh with a new profile. Here are some considerations on that approach:
- You’ll lose connections – Deleting the account erases your network, requiring you to start rebuilding contacts from scratch.
- SEO and profile visibility suffer – Any SEO value accrued by your previous profile is gone when starting a new account.
- Verification is lost – Things like certifications, licenses, volunteer experience etc. need to be re-uploaded and re-verified.
- Job history is erased – Your work experience summary won’t carry over to the new profile.
- Hacker may still have data – Personal data obtained by the hacker cannot be erased just by deleting your account.
In most cases, restoring and securing the existing hacked account is preferable to starting all over. Especially if you have a well-established network of professional contacts. However, in certain circumstances deleting may be the best option:
- The hacker significantly damaged your reputation or abused relationships.
- Extensive identity theft means the account now poses an ongoing risk.
- The hacker created extensive unauthorized content that’s hard to clean up.
Before deleting your LinkedIn account, make sure to download an archive copy for records. Also alert your network that you’ll be restarting your presence under a new profile.
What legal recourse do I have related to a hacked LinkedIn account?
If your LinkedIn account gets hacked, you may be wondering if you can pursue legal action against the perpetrators. Here are some considerations on potential legal recourse:
- LinkedIn terms require arbitration – LinkedIn’s user agreement requires binding individual arbitration to resolve disputes.
- Hacker identity often unclear – It can be very difficult to conclusively identify who hacked your account for legal action.
- Law enforcement typically won’t get involved – Most agencies won’t investigate unless major identity theft or financial fraud occurred.
- Civil suits unlikely to benefit – Suing an unknown hacker or foreign state actor has little chance of meaningful compensation.
- Best recourse is securing your account – Preventing further unauthorized access is usually the most constructive action.
In some rare cases, extensive identity theft related to a LinkedIn hack may warrant filing an identity theft report with the FTC or requesting an FBI investigation. But in most instances, there are few viable legal remedies. Your best recourse is protecting your account and alerting your network.
Is LinkedIn liable if my account gets hacked?
If your LinkedIn account gets compromised, you may wonder if LinkedIn bears any responsibility or liability for the breach. Generally, LinkedIn’s liability is limited in the case of account hacks:
- No guarantee of total security – Like all online platforms, LinkedIn comes with inherent security risks that users accept.
- Not liable for user behavior – LinkedIn isn’t directly responsible for hacking conducted by third-party actors.
- Provides security controls – LinkedIn gives users tools like MFA, login alerts, privacy settings to secure accounts.
- Quickly addresses reported breaches – LinkedIn has a duty to disable affected accounts and restore control when notified of hacks.
- Users responsible for strong practices – Users must use strong passwords, avoid phishing, and enable available security controls.
LinkedIn does have legal and ethical obligations to have reasonable security measures in place and quickly respond to reported account breaches. But the platform isn’t strictly liable for any damages associated with individual account hacks.
Key Takeaways
- LinkedIn account hacks put professional contacts, corporate data, and personal identity information at risk.
- Phishing, malware, credential stuffing, and password spraying are common vectors of attack.
- Enabling two-factor authentication and using strong, unique passwords are key precautions.
- Act quickly to lock down accounts and alert connections if hacked.
- In most cases, restoring an existing account is better than deleting and starting fresh.
- There are limited legal remedies, so focus efforts on securing your account.
While hacks are unfortunately common, following cybersecurity best practices can help deter many attacks. Carefully maintaining your LinkedIn presence and being vigilant against unauthorized access allows you to maximize the professional benefits of the platform while minimizing the risks.