If you receive an email seemingly coming from a LinkedIn user, asking you to open an attachment in order to see "your photos" - don't do it! Opening the Image_DIG[random number].htm file with Internet Explorer will lead you to a website sporting the "Please wait a moment.
Spoofed LinkedIn emails notifying recipients of messages requiring their attention are not a new occurrence, but the recently rent out ones seem to be more targeted than usual.
It seems that LinkedIn can't catch a break these days.
Qualys researcher Francois Pesce used open source password cracker John the Ripper to try to crack SHA-1 hashes of leaked LinkedIn passwords.
LinkedIn has finally confirmed that some of the passwords that were leaked yesterday correspond to LinkedIn accounts, and has issued a list of steps that they are taking in order to ensure that that the leak doesn't result in hijacked accounts: 1.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.