Social Networking Giant LinkedIn has Security Flaws

by Swati on May 23rd, 2011

LinkedIn might have been on cloud nine after its IPO success, but the path ahead doesn’t appear so smooth for this social networking giant. Recently, the site was under scrutiny for some of its security vulnerabilities.

Rishi Narang, an independent Internet security researcher, pointed out some of LinkedIn’s security issues. “LinkedIn has security flaws that makes users’ accounts vulnerable to attack by hackers, who could break in without ever needing passwords”, Rishi told Reuters.

According to the security researcher, the problem is related to the way LinkedIn manages a commonly used type of data file known as a cookie. After the LinkedIn users enter their username and password to access the account, the site creates a cookie “LEO_AUTH_TOKEN” on the computer of the users that provides access to their accounts.

“There are several website that use such cookies, but what makes LinkedIn more vulnerable is that its cookie does not expire for a full year from the date it is created. In most of the other sites, the cookies expire in 24 hours or less than that. Some like the banking sites log off users after 5- 10 minutes of inactivity”, Narang said in his blog on Saturday.

The long life of the LinkedIn cookie means that anybody can sniff the cookies from clear-text session, and then access and modify the information available on the user profile page for as much as a year. Narang said that the problem is serious because LinkedIn’s users are unaware of the issue and have no idea that they should be protecting the cookies.

To all this, LinkedIn issued a statement saying the company has already taken steps to secure the accounts of its users and that it takes the privacy and security of its members seriously. The company said that it currently uses SSL, or secure sockets layer technology for encrypting sensitive data like account logins. It is planning to offer “opt-in” SSL support for other parts of the site, in the coming months, that would cover encryption of those cookies.

Whether it is LinkedIn or Facebook, each social networking site has had its own share of security issues. The users must keep this in mind and protect their account by opting for trusted and encrypted WiFi networks or VPNs (virtual private networks), whenever possible.

Image Source: http://www.zdnet.com

You might also like:

Previous Post Next Post

Comments

Follow @buzzomdotcom
GET BUZZOM IN YOUR INBOX
Popular Posts
Highlights
DeNA teams up with Sina Weibo to bring Mobage gaming platform to Chinese users
Japan’s leading social gaming platform operator DeNA and Sina Corporation, the operator of China’s largest microblogging platform Weibo....
SingTel acquires U.S.based mobile advertising solutions company Amobee for $321 ...
South Korea voices concerns over Google privacy policy...
Thailand to buy 900,000 tablets from China for School Children...
Steve Jobs says “i Like Android” in his afterlife...
Chinese search giant Baidu to enter low-cost smartphone market
Baidu is planning to launch low-cost smartphones, based on its new mobile operating software, the company told the Wall Street Journal, in a...
Chinese search engine Baidu to unveil a new Smartphone next week...
Evernote launches a China-based note-taking service...
Internet users in China are strongly influenced by social media while making pur...
Only 1 in 10 Brands in the UK measure Social media ROI, says study...
Social media growth is declining in India, says Garner report
India might be experiencing increase in social media usage. However, a recent report by Gartner points out that social media growth is dwind...
Education services startup Limberlink Technologies raises $2 million from Accel ...
Online gifting portal Giftcart.com raises $1 million from TekCorp...
Online shopping portal for Indian Ethnic wear Cbazaar raises $3.5 million...
Ybrant Digital buys three Internet companies from Experian for $175 million...
Participate in this Research on Social Media Landscape and get a free Report worth $250
Participate in this survey on Social media landscape by Simplify360, a social media management infrastructure platform, that enables organiz...
Infographic: How Social Media helps in boosting search engine rankings?...
Social media growth is declining in India, says Garner report...
Facebook introduces new changes to its data use policy...
Facebook is testing a new ‘pay to get popular’ feature on the social network...
Participate in this Research on Social Media Landscape and get a free Report worth $250
Participate in this survey on Social media landscape by Simplify360, a social media management infrastructure platform, that enables organiz...
Twitter launches weekly email digest feature...
Infographic: How Social Media helps in boosting search engine rankings?...
Social media posts by businesses influence buying decisions as much as friends�...
Youth in Asia are experiencing stress due to Social Media...
Google Docs get a new research tool
To urge users to utilize its search function even more, search giant Google has announced the launch of a new ‘Keyword research’ feature...
Google rolls out a new version of Google+ iPhone app...
Now, you would be able to respond to Google+ notifications from Gmail...
Google opens ‘Hangouts on Air’ to users worldwide...
Google News will now include content from Google+...

About Buzzom

Buzzom is a platform to explore and share the what, why and how of social media marketing. Get insight into latest social media trends, get tips on using social media tools like Facebook, LinkedIn and Twitter, and learn from experts about what it takes to build a buzz around your brand.

Hosted and Secured by

webhostingbuzz

© 2011 Buzzom. All Rights Reserved. inrev logo