Microsoft-owned LinkedIn is being used by hackers to spread data stealing malware via sending connection requests in disguise of people working with reputed companies, a report showed on Tuesday. Researchers found that scammers are exploiting LinkedIn’s chat and job posting features to share links/files that are laced with stealer malware. Since most LinkedIn users accept any and all connection requests they receive, scammers can easily make connections and build credibility on the platform. After building credibility, the actors share malicious files and links, which are then opened by unsuspecting victims. Once opened, a stealer malware is deployed on the victim’s system, from which it steals passwords, credit card information, and other sensitive data, and sends it to the threat actors.
About the Author
The opinions expressed in this post belongs to the individual contributors and do not necessarily reflect the views of Information Security Buzz.
