LinkedIn Phishing Attacks Surge in 2022: Protect Your Credentials
LinkedIn phishing attacks soared in early 2022, with fake LinkedIn emails designed to steal login credentials. This article covers how these attacks work, the risks they pose, and key ways to protect your LinkedIn account and sensitive information.
2024-01-19
'%3e%3cpath%20d='M4%204L15.733%2020H20L8.267%204H4Z'%20stroke='%230671C0'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3cpath%20d='M4%2020L10.768%2013.232M13.228%2010.772L20%204'%20stroke='%230671C0'%20stroke-width='2'%20stroke-linecap='round'%20stroke-linejoin='round'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_8149_16006'%3e%3crect%20width='24'%20height='24'%20fill='white'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
'%3e%3cpath%20d='M5.37214%2023.8745H0.396429V8.10162H5.37214V23.8745ZM2.88161%205.95006C1.29054%205.95006%200%204.65279%200%203.08658C1.13882e-08%202.33427%200.303597%201.61278%200.844003%201.08082C1.38441%200.548853%202.11736%200.25%202.88161%200.25C3.64586%200.25%204.3788%200.548853%204.91921%201.08082C5.45962%201.61278%205.76321%202.33427%205.76321%203.08658C5.76321%204.65279%204.47214%205.95006%202.88161%205.95006ZM23.9946%2023.8745H19.0296V16.1963C19.0296%2014.3665%2018.9921%2012.0198%2016.4427%2012.0198C13.8557%2012.0198%2013.4593%2014.0079%2013.4593%2016.0645V23.8745H8.48893V8.10162H13.2611V10.2532H13.3307C13.995%209.01393%2015.6177%207.70611%2018.0386%207.70611C23.0743%207.70611%2024%2010.9704%2024%2015.2102V23.8745H23.9946Z'%20fill='%230671C0'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_3867_24588'%3e%3crect%20width='24'%20height='27'%20fill='%234A4D53'%20transform='translate(0%200.25)'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
'%3e%3cpath%20d='M13.957%2014.75L14.668%2010.0848H10.2225V7.05745C10.2225%205.78115%2010.8435%204.53707%2012.8345%204.53707H14.8555V0.565174C14.8555%200.565174%2013.0215%200.25%2011.268%200.25C7.60703%200.25%205.21403%202.48441%205.21403%206.52931V10.0848H1.14453V14.75H5.21403V26.0278H10.2225V14.75H13.957Z'%20fill='%230671C0'/%3e%3c/g%3e%3cdefs%3e%3cclipPath%20id='clip0_3867_24590'%3e%3crect%20width='16'%20height='25.7778'%20fill='%234A4D53'%20transform='translate(0%200.25)'/%3e%3c/clipPath%3e%3c/defs%3e%3c/svg%3e)
LinkedIn Phishing Attacks: Why They’re Rising and How to Protect Your Account
In recent years, LinkedIn phishing attacks have become a growing threat, with a startling 230% increase in phishing scams impersonating LinkedIn in February 2022 alone. Cybercriminals have turned to LinkedIn-themed phishing emails to trick users into handing over their login credentials and personal data. According to recent research by Egress, attackers are even using LinkedIn-branded display names and subject lines like “You have 1 new message” and “Your profile matches this job,” making these phishing emails look identical to real LinkedIn communications.
So, how are these phishing attacks succeeding, and what steps can you take to protect your LinkedIn account and sensitive information? Let’s dive into the tactics attackers use and the best practices to defend against them.
Why LinkedIn is a Prime Target for Phishing Attacks
Cybercriminals have long been aware that users trust LinkedIn as a professional network, which makes it an ideal avenue for phishing attacks. A recent report from Check Point Software highlighted that over 52% of phishing attempts in early 2022 used LinkedIn branding. This focus on LinkedIn can be attributed to several factors:
- High Traffic and Engagement: LinkedIn is widely used by professionals, many of whom access the platform daily to network, job hunt, and communicate.
- Trust in LinkedIn Emails: Users are familiar with LinkedIn email notifications and are therefore less likely to scrutinize these emails for signs of phishing.
- Access to Sensitive Information: LinkedIn profiles contain valuable personal information, which attackers can use to build profiles for social engineering attacks or unauthorized access.
Inside a LinkedIn Phishing Attack: How the Emails Work
LinkedIn phishing emails are carefully crafted to replicate authentic notifications from the platform. Attackers use branded HTML templates and LinkedIn’s color scheme, logo, and icons. These emails often include enticing subject lines like “You have 1 new message” or “Your profile appeared in searches,” designed to prompt recipients to click on embedded links without hesitation.
Here’s a breakdown of how these attacks typically unfold:
- Deceptive Emails: Cybercriminals send emails that look nearly identical to LinkedIn’s legitimate notifications, often using webmail addresses with LinkedIn display names.
- Fake Login Pages: If a user clicks on the link in the phishing email, they’re taken to a page mimicking LinkedIn’s login screen. The site asks for login credentials, which attackers capture for later use.
- Credential Theft and Malware Delivery: With login details in hand, attackers gain access to the victim’s LinkedIn account. Some phishing links also contain malicious attachments or payloads, further exposing users to malware infections.
The success of these attacks largely stems from their simplicity. While they may not be highly sophisticated, the familiar branding of LinkedIn encourages users to interact with these emails without suspecting foul play.
Recent LinkedIn Phishing Cases
One prominent example of LinkedIn phishing happened in early 2022, when multiple reports surfaced about attackers using LinkedIn-branded emails to distribute malware and steal credentials. In one case, emails pretending to come from CVS and American Express were embedded within LinkedIn-branded messages. This method makes the phishing email appear even more legitimate, as it references reputable companies.
Omer Dembinsky, a research manager at Check Point Software, aptly describes these attacks as “attacks of opportunity.” Criminals cast a wide net, aiming to ensnare as many victims as possible. By targeting LinkedIn, a trusted platform with millions of daily users, attackers increase their likelihood of capturing valuable data.
Protecting Your LinkedIn Account from Phishing Scams
With the rise of LinkedIn phishing, it's more important than ever to stay vigilant and adopt security measures. Here are actionable steps that can help you avoid falling victim to LinkedIn phishing attacks:
Phishing emails can be difficult to identify at a glance, but common signs include:
- Misspelled Domains: Always check the sender’s email address for unusual spelling errors.
- Generic Greetings: Authentic LinkedIn emails often address you by name, while phishing emails may use vague greetings like “Dear User.”
- Unexpected Requests: If an email prompts you to enter sensitive information, verify its legitimacy by navigating directly to LinkedIn’s website.
LinkedIn offers multi-factor authentication (MFA) to add an extra layer of security to your account. With MFA, you must enter a unique code generated by an authentication app along with your password. This way, even if your credentials are compromised, attackers are less likely to access your account.
If you receive a suspicious email, report it to LinkedIn directly through their help center. Reporting phishing emails allows LinkedIn and security researchers to monitor phishing trends and educate users about emerging threats.
Instead of clicking on links in potentially suspicious emails, visit LinkedIn directly to handle account alerts, security warnings, and password resets. Legitimate issues will be reflected on LinkedIn’s website, and navigating directly to the platform ensures that your actions are safe.
Companies should invest in security awareness training programs for their employees to recognize phishing emails and protect their information. By learning to identify phishing signs, employees become a line of defense, reducing the risk of data breaches.
For effective security awareness training, organizations can use platforms like Keepnet Labs’ Security Awareness Training that equip employees with the skills to recognize and report phishing emails.
Final Thoughts: Staying Ahead of LinkedIn Phishing
LinkedIn phishing attacks are a stark reminder that even familiar, trusted platforms can be used against us. With over half of phishing attacks in early 2022 linked to LinkedIn impersonations, users and businesses alike must adopt a proactive approach to stay safe.
By applying multi-factor authentication, recognizing phishing tactics, and utilizing resources like phishing simulators and Keepnet Human Risk Management Platform, individuals and organizations can significantly reduce their chances of falling victim to these scams. Protecting your credentials on platforms like LinkedIn is key to ensuring your professional and personal information remains secure.
Editor's Note: This blog was updated on November 19, 2024.
SHARE ON