Just a few days ago, a new LinkedIn feature called “Intro” — a series of technological hacks that would display a bar featuring the LinkedIn profile of anyone who communicated with you through email. As a long-time user of Rapportive, an add-on that shows you the LinkedIn account, Twitter feed, and the last few posts a contact has made across other social media properties, even I was excited about it.
Until I spent some time digging around their engineering blog, that is.
“Oh noes!” you’re probably thinking, “here she goes with hackers again!”…. and you’re not wrong. LinkedIn’s security record isn’t great, and user data has been compromised numerous times. Sorry guys, your track record is nowhere near stellar enough to be worthy of access to the goings-on of millions of inboxes.
We already know that email isn’t a secure method of communication–it can be cracked, hacked, manipulated and pulled apart in no time. We know that Gmail scans accounts to better-place ads. We know that our email accounts are under daily attack from spammers, phishers, and all kinds of other sources attempting to gain access to our machines and personal information. But at a time when numerous widespread surveillance operations on online behaviors come to light every day, any service that wants to use a proxy server to scan your this should creep you the hell out.
Three words of advice about LinkedIn’s new “Intro” feature: don’t do it!
And if you don’t believe me, here are is a great post from a security researcher about why using this new LinkedIn feature is a terrible, terrible idea.