According to recent data by Atlas VPN, phishing emails mentioning “LinkedIn” in their subject lines are the most likely to be opened by victims. They have an open rate of 47%!!
When you receive messages saying,
“You appeared in new searches this week”,
“People are looking at your LinkedIn profile”,
“Please add me to your Linkedin network”,
“Join my network on LinkedIn.”
You are interested to know who contacted you and if the connection would benefit you. But, then you end up losing your contact information and valuable data.
A LinkedIn phishing attack occurred recently in March 2021, when over 500 million user accounts were hacked and their LinkedIn account data was found for sale online. The hacked data consisted of full names, LinkedIn IDs, email addresses, phone numbers, user gender, links to LinkedIn profiles, links to connected social media profiles, professional titles, and other work-related data.
The cybercriminals even asked for a “four-digit $$$$ minimum price” for access to a full database of account information. They even included 2 million user records to prove their legitimacy that users can view for $2 forum-specific credits.
In the first week of April 2021, it was observed that hackers were spear-phishing LinkedIn victims for job positions with a malicious zip file using the designation of a senior position. For example, if the job position is regarding Business Development Executive, the zip file would be titled as Senior Business Development Executive. When the victim downloads all the files from it, hackers get hands-on access to the system, infect it or share the information with other cybercriminals.
How can you prevent LinkedIn scams?
- Be careful of the people sending you connection requests. When you get a connection request from someone unknown, check for mutual connections, their account information and ensure that you are protected. Understand that if it is a genuine connection/ job offer request, it will look like one. The documents wouldn’t be sent in a zip file. In case of doubt, you can send a message, asking for more information to reveal their genuineness. Never open unsolicited file attachments from LinkedIn.
- Always protect your account with strong passwords. Never use the same password for all websites, always create a unique one and remember them.
- Implement layered or ‘umbrella’ network security solutions. At CQ Infotech, we provide 24*7*365 monitoring, anti-virus, anti-spam, and anti-malware techniques for businesses to stay safe. We use security tools, filter and analyze website content and watch for intrusions before they occur.
- Never install software or open it if you receive it from LinkedIn. Similarly, if the email/message on LinkedIn asks for personal information, like your email address or bank account numbers, etc., that is a scammer asking you.
As cybercriminals look out for sophisticated ways to attack users and steal information, you can do the only thing: Stay aware and protected. Your personal information is like a gold mine for hackers, hence being vigilant while opening LinkedIn emails and attachments is crucial.
That’s why at CQ Infotech, we help businesses stay safe from cybercriminals and have been preventing such attacks for 14 years now. Connect with us today to stay hack-free!!
CQ Infotech- Devising Ways to Keep Your Business Safe from Identify Threats