LinkedIn Patched A Serious Flaw On Their Platform Regarding Job Posting

Recently, LinkedIn has patched a loophole in its system that allows unauthorized people (or anyone) to post jobs listing on business pages.

It was Michel Rijnders (a recruiter in the Netherlands) who discovered this flaw. Then, he posted this finding on the Microsoft-owned social network - LinkedIn.

This flaw allowed users to post unofficial postings for a job on almost any company's business page on LinkedIn. These unofficial listings will not only show up on the "Jobs" page of the company but it will also appear on Google. This happens because the search giant gathers information about job listing from many recruitment websites.

Normally, you would need a premium subscription to create job postings. However, according to Rijnders, because of the flaw, he didn't need that to post the job postings for Chief Executive positions for LinkedIn and Google.

Posting fake jobs without the authorization of the hiring company is clearly a term and service violation on the platform. It fools candidates to apply for jobs that are nonexistent. Moreover, bad actors could abuse this to redirect candidates to external websites to harvest their information.

LinkedIn's response

After the post of Rijnders, Paul Rockwell (head of LinkedIn's trust and safety) has delivered a comment. In this comment, he said that LinkedIn has removed all the postings. And they are also working to fix this issue in the system.

Then in a recent statement, the company later confirmed that it has fixed this bug that accidentally affects the system. Apparently, this bug came from a test of the company to allow small business posting their job listings for free.