How to Spot a Fake LinkedIn Account
A few days ago I made a post regarding the need for LinkedIn to develop a feature that would scan accounts (followers, connections, requests) for certain attributes and deliver a score based on probability that the account is a bot/sock puppet. Well, yesterday I got a connection request from a fake account, further validating my thoughts on this topic. So, I thought I would help others to identify fake accounts... until we have AI/ML to do it for us. The rest of this article will be a walk through of my thought process and the actions I took to validate that the account is a fake.
It started with the following connection request in my inbox.
Now the person behind this account did put in more effort than others by personalizing the request with a few sentences, however, it is clear that this was a copy/paste. There is no specific name or personalized information, besides the word Security, which oddly has a capitalized S. Next, the profile image is strange because the woman is not looking at the camera. Not many real people would upload a profile photo in which they are not looking at the camera. We know how much effort people put into their profile photos. So, next step is to check out the account further.
Based on this information, focus on the Connections, About, and Activity sections. "Karen" has 46 connections, now this isn't a sure fire sign of a fake account, but either the user never uses LinkedIn, just created a LinkedIn profile, or is a fake account that was just created. Also, if the first option was true, she most likely would not be following me as I do not know her personally. Most legit accounts with such a low number of connections only connect with those they know outside of LinkedIn.
"Karen's" About section also gives us zero information. It is very unspecific, and does not tell us a single thing about this person. Fake accounts usually try to be as generic as possible on details. And on to the Activity section, "Karen" has not made a single post, comment, or like. So, once again, she has either just created her account, never used LinkedIn for the beneficial purposes it offers, or is a fake account that was just created. I'm leaning towards the third option at this point. It is also worth noting that there is no banner image. This is not super abnormal, but most people do have a banner on their profile.
Next, I looked into "Karen's" Experience.
领英推荐
The Experience section is where the person behind this account really messed up when creating this fake profile. By using the same verbiage for multiple roles with multiple companies, it's almost a guarantee that this is not a real profile. It is clear that no effort was put into creating a realistic looking Experience section. I know of Capgemini and Cox, but I have never heard of AppSOC. When clicking on the company LinkedIn account, it shows 3 employees and was started in 2021. I cannot confirm that this is a fake company, but it is certainly suspicious.
Now for the final step, let's reverse search the profile picture to confirm that it is a stock photo. *This step requires the desktop version of LinkedIn. You must right-click and copy the profile image and then you can paste it in the desired site. I like to use TinEye, but there are many sites available to reverse search an image. Just google some and find one that works for you. Here are the results I got from TinEye:
And those 28 results confirm that this is indeed a stock photo.
So there you have it, based on the generic wording, no activity, pasted experience descriptions, and stock photo, I can say with high confidence that this profile is a fake account. Sorry Karen Davis, but I will be declining the request.
Aftermarket Sales & Technical Specialist
1 年Micah, just this week I have received something to the order of 8-10 invites to connect from similar looking profiles- Asian woman's picture and phony looking education and job history. Not sure how to report this to LinkedIn. I have blocked each one. I get the feeling it's some malicious crap from China. I'm interested what your thoughts or experience might be with this.
Cofounder & COO, Pulsedive Cyber Threat Intelligence
2 年Additional research on ai generated fake profiles that do look at the camera, but can be determined suspicious when taking a closer look by a few telling traits. https://www.npr.org/2022/03/27/1088140809/fake-linkedin-profiles My favorite recent fake invite in my inbox was someone with a double layered left ear.
Law and Economic student | Webint expert
2 年Important post. Just to mention that even if you use mobile version of LinkedIn you can use "screen capture" to get the profile picture. You can cut it in the gallery after, or use a reverse photo search engine that let you choose part of the photo (like "Google lens").
Deputy Vice President | Cyber Secur!ty
2 年Good recon
Lead CTI Analyst | Meme Intelligence
2 年Whenever I get these, I'll usually search for more profiles using the text in the About or job sections, because 9 times out of 10, it's been copypasta'd across multiple profiles. The scary part is how many mutuals you find following/connected, or the sheer numbers of connections they have (some were well over 500). Not all of them are security/IT or executive fakes either, I've seen influencer/HR/recruiter types also. The last group of these I found, it was probably around 50 consultant/influencer profiles that were likely within the same group, based on the photos used and verbiage.