linkedin

Why Attackers Are Phishing on LinkedIn (and How to Stop It)

Phishing attacks have expanded beyond emails to social media and messaging apps like LinkedIn, where they can be particularly effective due to the platform's professional trust and accessible target identification. LinkedIn phishing is rising because traditional email security measures often do not cover direct messages, allowing attackers to reach high-value targets easily. To mitigate risks, users should treat LinkedIn messages similarly to emails, verify requests through alternative channels, implement multi-factor authentication, and receive training on recognizing phishing attempts outside of email.

https://www.pandasecurity.com/en/mediacenter/why-attackers-are-phishing-on-linkedin-and-how-to-stop-it/

Major Leak Reveals One of the Largest Lead-gen Databases Ever Exposed

A major data leak exposed 4.3 billion records, including LinkedIn-derived personal information, due to an unprotected MongoDB database. Researchers discovered 16TB of data, with details like emails, employment histories, and personal profiles. The leak poses significant security risks, enabling targeted phishing and social engineering attacks, as attackers can exploit this structured and current data. The incident underscores vulnerabilities in data management practices and highlights growing threats from extensive data leaks.

https://cybernews.com/security/database-exposes-billions-records-linkedin-data/

5 Reasons Why Attackers Are Phishing Over LinkedIn

LinkedIn phishing is rising, with 34% of attacks occurring outside email. Key reasons include:

  1. Bypasses traditional security tools since LinkedIn DMs evade email security protections.
  2. Cheap and easy for attackers, leveraging legitimate account hijacking.
  3. Facilitates targeting high-value individuals due to easy reconnaissance.
  4. Users more likely to trust messages from familiar contacts.
  5. Potential rewards are high because breaches can compromise core business accounts and data.

Organizations must adapt security to guard against these threats across multiple channels, not just email.

https://www.bleepingcomputer.com/news/security/5-reasons-why-attackers-are-phishing-over-linkedin/

Scroll to Top