DISCORD.IO AND LINKEDIN UNDER ATTACK
What you need to know about your account(s)
Discord.io has reported that their user database of 760,000 has been posted for sale on a darknet forum. In response to this, Discord.io has revoked all tokens and has sent notifications to users to re-create a password as well as turn on two-step authentication. Discord.io believes that this breach happened due to a website code vulnerability, allowing the attacker to copy the database. For now, Discord.io has taken its website offline and will be overhauling its security and website practices.
LinkedIn accounts are under brute-force attacks. According to researchers, a treat actor has been successfully taking over LinkedIn accounts around the world. Some users are being pressured to pay a fee to regain access to their accounts. There are no reports as to how many users this is affecting. The compromised accounts are being used for phishing and/or scams.
Your account(s) have been compromised, what should you do?
If you have access to your accounts, consider changing your password to a strong one; 8-12 characters including numbers, symbols, and upper and lower case characters. A strong password doesn’t have any predictable patterns or contain any personal information that’s easily accessible such as your date/year of birth, phone number or street address. You may also want to use (if available) two-factor authentication on your accounts. You don’t need to download an app to generate a code, you can simply use the “text a code” to your phone number or have that code emailed to you. Having two-factor authentication enabled on your account is added security for your accounts so that if someone has your password, they need the randomly generated code that was sent to your device or email.
Read More: IT World Canada