January 20th 2015
A warning about phishing emails claiming to be sent by business social network LinkedIn has been issued. Internet security software specialist Symantec has warned of a new wave of such emails claiming to be issued by LinkedIn's support team. According to Symantec, the emails have the ability to evade spam filters.
A typical email reads:
“Due to irregular activities your Linkedln account has been subjected to compulsory security update. Linkedln may sometimes deny logins in cases where we believe the account could have been compromised.
To do this we developed a new secure way that keeps your account safe. we have attached a form to this email to complete the process. Please, download and follow the instructions on your screen.
Linkedln Support”.
The email contains an attachment which is a copy of the genuine LinkedIn webpage. However, the website’s source has been modified to enable fraudsters to hijack user credentials if this page is used to enter login details. In turn, they can impersonate genuine LinkedIn user and potentially abuse established business relationships to commit fraud and damage business reputions. This is effectively a form of identity theft.
The emails are convincingly compiled by some use a lower case 'i' in the name 'LinkedIn', but the error is difficult to spot to the unsuspecting eye.
Avoid scam LinkedIn emails
Consider turning on two-step verification which provides an additional security layer. This is done as follows on the LinkedIn site:
1. Move your cursor over your profile photo at the upper right of your homepage and select Privacy & Settings. For verification purposes, you may need to sign in again.
2. Click the Account side tab by the shield icon towards the bottom of the page and select Manage security settings.
3. Click Turn On under the Two-step verification section.
4. Enter your cell phone number to receive a verification code.
5. Click Send Code.
6. Once you receive the code sent to your phone, enter it into the box on the device you're using to sign.
7. Click Verify.
8. Click Done.
More information is available at LinkedIn's help centre.
If you are a victim of fraud you can call Action Fraud on 0300 123 2040 or via their online fraud reporting tool at www.actionfraud.police.uk and receive a police crime reference number.
