A recent report from Check Point Research has unveiled a startling statistic: nearly half of all global phishing attacks involve impersonating LinkedIn, the business platform owned by Microsoft.
Scammers often exploit LinkedIn by targeting individuals who are searching for new job opportunities or considering a career change. While emails such as "You have 1 new invitation" or "Your profile has been viewed by 63 people" may seem legitimate, it's crucial to verify the sender's email address to ensure it genuinely comes from LinkedIn. Impersonators craft emails that closely mimic real ones, directing recipients to fake LinkedIn pages designed to steal their information upon entry.
Another tactic used by cybercriminals involves creating fake LinkedIn profiles to message users about job opportunities. Once they have engaged the victim, they may request a small upfront payment to process the application—money that will never be seen again—or direct them to fill out a form that is actually a phishing link in disguise.
LinkedIn is aware of these issues and is actively working on developing advanced security features to protect its users. Here are three of the current security measures it has already implemented:
- Suspicious Message Warnings: LinkedIn's advanced technology can identify messages from individuals attempting to lure you off the platform or communicate inappropriately. When such messages are detected, you will receive a warning notification.
- Profile Verification: This feature enables you to authenticate your profile's legitimacy. By submitting an additional form of identification, you can obtain a verification badge on your profile, assuring viewers of your authenticity. This is particularly useful as scammers frequently target new victims and often have profiles that get swiftly removed, making it uncommon for them to maintain up-to-date information.
- Profile Information: This feature provides detailed insights into a person's profile, aiding you in deciding whether to respond to a message, accept a connection request, trust an offer, and more. To access this, go to your profile, click "More," and select "About this profile" from the drop-down menu. You will then be able to view information such as:
- When the profile was created
- When the profile was last updated.
- Whether the member has verified a phone number.
- Whether the member has a work e-mail associated with their account.
- Detection of AI-Generated Profile Pictures: Scammers often exploit AI to create highly realistic profile pictures of non-existent individuals, using these fabricated identities to deceive users through fake profiles. Alarmingly, LinkedIn's research revealed that most users struggle to visually differentiate between authentic faces and these AI-generated ones. In response, LinkedIn has collaborated with academic institutions to develop and implement sophisticated detection tools. These advanced features enable LinkedIn to identify and remove AI-generated profile pictures, proactively shutting down fraudulent profiles before they can cause harm.
Do you use LinkedIn to find jobs, employees or clients? It's a great resource for business, but it's important to stay secure. However, LinkedIn's features are just the first line of defense. If someone in your organization were to fall for a scam and click a bad link, would your internal security solutions be enough to protect your network?
We can help you find out. We'll do a FREE consult to help you determine if your network is vulnerable to any type of attack. To book yours, call us at