A new vulnerability discovered in LinkedIn’s AutoFill functionality found leaking its users’ sensitive information to third party websites without the user even knowing about it. The vulnerability is not at all a sophisticated or critical one, given the recent Cambridge Analytica scandal. A security researcher Jack Cable of Lightning Security discovered the vulnerability on April 9th and immediately disclosed it to LinkedIn. The company issued a temporary fix the next day without informing the public of the issue. The fix only restricted the use of the AutoFill feature to whitelisted websites only who pay LinkedIn to host their advertisements.
Source: https://thehackernews.com/2018/04/linkedin-account-hack.html