1. Forum
  2. tqwNet
  3. TQW_GENTECH

  • LinkedIn URLs are being hijacked for phishing

    From TechnologyDaily@1337:1/100 to All on Fri Sep 24 16:45:03 2021
    LinkedIn URLs are being hijacked for phishing

    Date:
    Fri, 24 Sep 2021 15:23:06 +0000

    Description:
    Attackers have found another way to take advantage of LinkedIns reputation
    for their malicious purposes.

    FULL STORY ======================================================================

    Cybersecurity researchers have caught hold of attackers using LinkedIn s shortened URLs in phishing campaigns in order to trick email apps as well as the victims.

    Researchers from Avanan have shared details of how hackers are taking advantage of LinkedIns automatic URL shortening service to launch a new credential harvesting campaign.

    In a blog post , the researchers shared an email that invited recipients to click on a LinkedIn shortened URL to enter missing details. TechRadar needs you!

    We're looking at how our readers use VPNs with streaming sites like Netflix
    so we can improve our content and offer better advice. This survey won't take more than 60 seconds of your time, and we'd hugely appreciate if you'd share your experiences with us.

    Click here to start the survey in a new window << Shield yourself with these best identity theft protection services These are the best email
    hosting providers Also check our list of the best email clients

    The URL (shortened to lnkd.in) passed through the LinkedIn short URL service, leading visitors across several redirects, landing on this phishing page, the researchers note. Brand hijack

    Citing a recent Check Point Research report that rated LinkedIn as the sixth most impersonated brand in phishing attempts around the world in Q2 2021, Avanan argues that the latest phishing scam can target any employee.

    Plus, more employees have access to billing and invoice information, meaning that a spray-and-pray campaign can be effective, believes Avanan.

    The use of URL shortening service in order to redirect recipients to a phishing page, isnt exactly novel.

    Earlier this year, investigating a malicious message sent via Facebook Messenger, CyberNews researchers uncovered a large-scale phishing campaign that used a URL shortening service to trick close to 500,000 Facebook users.

    In fact, security researchers have long been advising users against clicking shortened URLs in instance messages, emails, and other forms of online communication from unfamiliar sources. Protect your devices with these best antivirus software



    ======================================================================
    Link to news story: https://www.techradar.com/news/linkedin-urls-are-being-hijacked-for-phishing/


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)