Fake Job Offers Spread Malware via LinkedIn Messaging, Invite, & InMail: What, Why, Who, & How to Stay Safe!

What: Malware Perps

Looking to steal data and access deep into company networks for nefarious deeds, the Malware Perps, pretend to be a Recruiter, initiate contact by LinkedIn Invite, InMail, and Messaging, preying on good Members, during regular business hours, and enticing you with opportunities so good, that you can’t refuse.

Why: Do They Do It?:

1. ?To Gain Control of Your Profile, then lock you out by changing your Login eMail and PW, SPAMMing your connections, proliferating their Malware and more than likely Ruining Your Digital and Real Reputation.
2. To Get Your Connections’ contact info through your downloadable LinkedIn data file [LinkedIn.com/PSettings/Member-Data] and use it to proliferate their malware.
3. To Get Inside Your Company, that’s why they choose business hours, hoping you will give them access to the internal network, by clicking on the link from your company’s email address associated with your LinkedIn account from your business computer, your personal computer on a company network or even your smartphone’s personal email access on the Company’s Wifi will do the trick.

Who: how to Identify the Malware Perps in Your Messaging, Invite, & InMail, they use:

• A Shortened URL link like Bitly or TinyURL that leads to cleverly spoofed Job Recruiter Landing Page that automatically starts a JScript loader. [??Apply here and use my name as a referral: ____.com]
• An attached PW Protected Microsoft Word doc when opened begins downloading Macros to open back doors to your computer and attached networks. [?? Here’s the Confidential Job Description, your PW is ____]
• An attached Adobe PDF with a real looking URL link that when clicked takes you to the spoofed landing page. [?? Job Description PDF Attached]

If none of the above exist in the initial contact and you chose to accept the Fake Recruiter’s invite to connect, the Malware Perps now get to download your contact info. Then they will approach you via phone and email to build your confidence to ultimately dupe you into one of the above scenarios via email.??

How: to Stay Safe on LinkedIn:

1. Vet Everyone who sends you a LinkedIn Invite or InMail before responding or accepting (Click on their Name at the messaging header to go to their profile and then look for inconsistencies, shared connections, stock photos, no written recommendations…).
2. Just Don’t Do It!, don’t click on any Shortened, Misspelled or Branding Irregular URL’s from sources that you do not have a trusted relationship with and even then, if it looks suspicious, give the sender a call to see if they sent the link (You may help a friend verify that they have a hacked account).
3. Select "No" eMail Downloads to disable downloading of your email in data export requests: LinkedIn.com/PSettings/Privacy/eMail
4. Remove Company emails from your LinkedIn Account: Linkedin.com/PSettings/eMail
5. Turn-on 2 Step Verification to keep your LinkedIn account safe from Hackers and make sure your connections do the same: Linkedin.com/PSettings/Account
6. Avoid Being Targeted by selecting “No one” or “Your connections only” for the feature Active Status, the little green dot that tells everyone you are at work and on LinkedIn during business hours: LinkedIn.com/PSettings/Presence

7.???Report Suspicious Contact in Messaging by Clicking the 3 Dots at the top right corner of the message box.

Click “It’s spam or a scam,” then Click “It’s a Scam, Phishing or Malware. Then finish them off with block and delete the connection on the next pop up screen. At your company, notify the tech group and have them mitigate the risk.

Hope this Information Runs Off the Malware Perps from Linkedin while Keeping Everyone and Their Companies Safe.

Continuously Seek Knowledge & Share It Freely, as It Will Set Us All Free.

Kevin D. Turner , Managing Partner & Personal Brand Strategist @ TNT Brand Strategist LLC

If you want to stay ahead of the LinkedIn Curve,

? Follow Me & Ring my ?? ?https://lnkd.in/eHcc5GXX

? Get the ROCK[In] Newsletter?lnkd.in/dNpAqTRV

? Subscribe on YouTube https://lnkd.in/g6xV4CEN

? Check Out the Merch https://lnkd.in/ghQzFnc8

? Follow?#NEWLInkedInFeature? #KeepRockingLinkedIn ?& ??#TNTBrandStrategist

?

Check out these ever-evolving resources:

???80+ Videos on [in]: youtube.com/@KeepRockingLinkedIn

???All the?NEW LinkedIn Feature(s): 2024?https://lnkd.in/gen97H-2

???The LinkedIn Timeline:?https://lnkd.in/e2_PdMSw

???30+ HIDDEN LINKEDIN RESOURCES:?https://lnkd.in/dyKk6_j

???200+ NEW LinkedIn Feature(s) 2023?https://lnkd.in/gXiA4aCF

???100+ NEW LinkedIn Feature(s)?2022:?https://lnkd.in/eYhzjFjE

???40+ NEW LinkedIn Feature(s)?2021:?https://lnkd.in/dsW-Zan

???50+ NEW LinkedIn Feature(s)?2020:?https://lnkd.in/gP5xGb6

Since 2005, TNT Brand Strategist, LLC has optimized 5K+ Profiles and Company pages with access to internal tools to increase rankings, drive Recruiter contact, generate 24/7 exposure, and accelerate transitions to dream careers. Most clients get recruited for their dream opportunities shortly after and directly related to their LinkedIn Profile Optimization.?

???200+ Reviews:?Lnkd.In/e4m4WdZQ

???5-Star Ratings:?Lnkd.In/gHsr_Sk9

???Services: Lnkd.in/eBWxNxXw