LinkedIn's Lynda.com, an online learning service, has begun notifying users about a data breach of its database which is affecting 55,000 Lynda.com users.
LinkedIn acquired Lynda.com for US$1.5 billion in 2015, and the company recently joined Microsoft as part of its $26.2 billion acquisition of LinkedIn.
According to Lynda, an unauthorised third-party accessed a database which included user data for Lynda.com. The firm is also notifying the other 9.5 million users who had “learner data, but no password information” in the breached database.
In a statement, the company said: ”We recently became aware that an unauthorised third party accessed a database that included Lynda.com user data. As a precautionary measure, we reset passwords for the less than 55,000 Lynda.com users affected and are notifying them of the issue. We're also working to notify approximately 9.5 million Lynda.com users who had learner data, but no password information, in the database. We have no evidence that any of this data has been made publicly available and we have taken additional steps to secure Lynda.com accounts.”
Out of an “abundance of caution”, Lynda.com users were sent this email: “We recently became aware that an unauthorised third party breached a database that included some of your Lynda.com learning data, such as contact information and courses viewed. We are informing you of this issue out of an abundance of caution. Please know that we have no evidence that this data included your password. And while we have no evidence that your specific account was accessed or that any data has been made publicly available, we wanted to notify you as a precautionary measure.”
Lynda.com says that it has already invalided the passwords of the affected users, those users will be asked to change their password when they login.