Kaspersky Comment: Web Scraping
July 2021 by David Emm, principal security researcher at Kaspersky
Following the news that a database including information from 700 million LinkedIn users from all over the world is selling for around $5,000 (£3,600; €4,200), A comment from David Emm, Principal Security Researcher at Kaspersky.
“Data is really valuable, but for the same reason that it’s valuable in the legitimate economy, it’s also valuable for criminals. We have seen a spike in the number of web scraping incidents, with LinkedIn being the most recent example: last month, 700 million LinkedIn members personal details were posted for sale, putting 92% of its userbase at risk of social engineering and spear phishing attacks.
“This isn’t data that is gathered as a result of a breach: rather, it gathered by scraping public information. However, for anyone whose data might be used to frame phishing attacks, the details of how their personal data has been collected is likely to be of secondary importance. We all need to pay close attention to how much of our information is available via social networks: if we wouldn’t want to see the information published in the pages of a national newspaper, we shouldn’t share it online.”