Linkedin has become such a hotspot to look for suitable and interesting job opportunities. All our history over the years is there for everyone to see and explore. Needless to say, this makes us vulnerable to sophisticated phishing attacks. Recently, people who have been looking for jobs online have become a target for LinkedIn phishing scam.
Cyber thieves have found an open ground to hack personal details and conduct attacks. A new hacker group is targeting LinkedIn users with phishing malware.
Cybersecurity firm eSentire has reported that a hacker group ‘Golden Chickens’ is sending fake job offers and opportunities to people on LinkedIn looking for jobs. The hackers are transferring ZIP files containing malware in form of a personal direct message (DM).
Job losses made it easy for the LinkedIn phishing scam
With unemployment at an all-time high, several people across industries have lost their jobs due to the COVID-19 pandemic. Countless unemployed people have turned to LinkedIn seeking potential job opportunities. That makes sense because it is so easy to tap into job opportunities available within your network and reach out to companies through people you know.
It’s easy to be pulled into this as well. That’s because hackers are sending out customised messages to individuals. For instance, if you have a post of ‘HR’ in your employment history, you will get a message with a ZIP file saying, ‘Application for HR position’. Once you download the ZIP file and try to open it on your PC or laptop, the malware will automatically get installed on your system. This will give hackers free rein into your PC.
You Might Also Like To Read: Facebook Data Leak 2021 Risks Information of 533 Million Users
Hackers are using the ‘more_eggs’ for backdoor entry into the potential intruder into the victims’ computers. The worst part is that this malware remains inactive in the computer and cannot be detected by the antivirus until the hackers themselves give instructions.
This malware holds the ability to other viruses and malware onto the victims’ computer, and can transfer sensitive information, including username and passwords for different websites to the hackers.
How to protect yourself from the LinkedIn phishing scam?
1. Since the malware is delivered in the form of a direct message in the form of a ‘ZIP file’, it is important for you to stay alert.
2. Anytime you receive a suspicious mail or message, do not click on the ZIP file. Instead, delete it immediately.
3. In case you accidentally click the ZIP file, it is best to delete the message as well as the ZIP so that hackers don’t get a chance to infect your computer.
Yes, the internet has helped us stay relevant despite the pandemic. However, there are loopholes that we need to stay alert about.
Keep abreast with all the know-how you need to stay safe online. You can also sign in for our newsletter to get the latest technology news delivered to your mailbox.