Upgrade to Pro — share decks privately, control downloads, hide ads and more …

LinkedIn Data Breach 2012 Case Study

045d790f605ea8d482380c5075d802d5?s=47 Cecy C.
November 30, 2021
Technology
0
23

LinkedIn Data Breach 2012 Case Study

Case Study presented for Beyond the Code: Cybersecurity in Context, UC Berkeley, MICS Fall 2021

045d790f605ea8d482380c5075d802d5?s=128

Cecy C.

November 30, 2021
Tweet

More Decks by Cecy C.

See All by Cecy C.
045d790f605ea8d482380c5075d802d5?s=48 cecyc
0
63
045d790f605ea8d482380c5075d802d5?s=48 cecyc
0
110
045d790f605ea8d482380c5075d802d5?s=48 cecyc
0
100
045d790f605ea8d482380c5075d802d5?s=48 cecyc
0
68
045d790f605ea8d482380c5075d802d5?s=48 cecyc
0
42
045d790f605ea8d482380c5075d802d5?s=48 cecyc
0
39
045d790f605ea8d482380c5075d802d5?s=48 cecyc
3
1.3k
045d790f605ea8d482380c5075d802d5?s=48 cecyc
1
360
045d790f605ea8d482380c5075d802d5?s=48 cecyc
1
35

Other Decks in Technology

See All in Technology
7fccfb690a818ed2f3a15fc21d426d5a?s=48 texmeijin
2
110
Bf4ef03d51107cf4cfa0c5146503b387?s=48 thorikawa
0
210
Dc20c893cac0daddd607dfc9a5855d27?s=48 amarelo_n24
0
430
7a37d60769f6f3004adee19a8ff2c219?s=48 tunepolo
8
5k
67683b0a8d24009c731787b49881a9de?s=48 tomuro
1
510
B1dca90d4b3ffd2ccd918774e1ba170d?s=48 hmatsu47
PRO
0
160
50fc0fdc2327ecbe7350645812de52e3?s=48 zakiyama
4
1.3k
532348a1aba5a909e283624c3d2a9a95?s=48 shift_evolve
0
1.9k
665aa20c57717b4f34d0635308d272f7?s=48 kwada
0
130
8d0803aa4572615f7bce5f5288e6b716?s=48 mochan_tk
0
440
2fc2b837317cbe7048316e798a774952?s=48 ntsolutions
0
110
3fa91dc187588e13e827810d2f30d8c7?s=48 moepy_stats
2
2.2k

Featured

See All Featured
5b9fe87ec1faa67a4599782930f45ec9?s=48 sstephenson
149
12k
8081b26e05bb4354f7d65ffc34cbbd67?s=48 chriscoyier
780
240k
9cde37f47e4a800ea081ea42de8d749a?s=48 dougneiner
123
8.3k
64827b31aef81498662e8af4bd6d5157?s=48 jonrohan
1021
410k
Bfd6b681ec6e8c9bef82ff0521c364f7?s=48 kastner
56
2.1k
Aebc2d07a50011e2a30d38435fde564a?s=48 jrom
120
7.5k
245cee81a9c424266e5e401d844ea881?s=48 lara
27
3.7k
B83d5b590577969ee79a5ad845411a7d?s=48 ammeep
660
55k
44b54d2ffcb7857004071cc6795dde11?s=48 cassininazir
350
20k
A60068bce2e73de3a37ca9d2dbe36092?s=48 bryan
35
4k
E43f8dfd01057f8304f5f8fb9a294d7d?s=48 jeffersonlam
336
17k
A9704266587836f7e784235e5073b93e?s=48 jmmastey
21
5.3k

Transcript

  1. Cecy Correa // UC Berkeley MICS 2021 LINKEDIN 2012 DATA

    BREACH CASE STUDY

  2. 1. The Hack How it happened Tracing & attribution 2.

    Impact LinkedIn class action suit United States v. Nikulin 3. Current day Agenda

  3. Using LinkedIn to Hack LinkedIn A little social engineering

  4. 4

  5. 5 (dramatic re-enactment of hacking into a server)

  6. 3 months later... Hack is uncovered on a message forum

  7. 7

  8. Food for Thought A look back at Conficker

  9. Hackers always leave a trace Tracing & Attribution

  10. None

  11. Assessing impact Legal repercussions

  12. 6.5 million accounts

  13. 100+ million accounts

  14. LinkedIn Class Action Lawsuit Lawsuit cites LinkedIn’s inability to: •

    Use strong encryption • Salt their passwords LinkedIn settles for over 1 million USD

  15. 1. Secure configuration of hardware and software 2. Controlled use

    of admin privileges Mitigation & CIS Controls

  16. 1. Secure configuration of hardware and software 2. Controlled use

    of admin privileges Mitigation & CIS Controls

  17. 17

  18. Food for Thought What do you think of the verdict?

  19. Current day Where are they now?

  20. 20

  21. 21

  22. 22

  23. Food for Thought Hack or no hack?

  24. Read more at: cecy.dev Thank you!