Scammers are phishing for LinkedIn members log in credentials by sending emails that are supposed to be from LinkedIn Support.
Symantec Senior Security Response Manager Satnam Narang wrote about the phishing campaign observed over the past week.
In the post Narange stated; “The body of the email claims that irregular activities have prompted a ‘compulsory security update’ for the recipient’s LinkedIn account.”
Instead, opening the attachment leads to a website, which looks like a legitimate LinkedIn login page, he said. The scammers have changed the websites source so that the login and password credentials are sent to the scammer.
Victims are duped into believing the email is authentic by using a lowercase ‘i’, as opposed to an uppercase ‘I’ in the bogus LinkedIn address.
Symantec pointed out that the scammers used HTML attachments in order to bypass browser blacklists. These black lists serve to keep users off phishing websites. Narang stated the best defense against this scam is to implement LinkedIn’s two-step verification for improved login security.
“With two-step verification enabled, even if a user’s credentials are compromised, an attacker would not be able to log-in without having access to the user’s mobile phone,” he said.
If you believe that you have been scammed and you credentials are compromised then please change your password immediately and notify LinkedIn support.