⚠️ Warning: Increase in Social Engineering Attacks via LinkedIn
Over the past two weeks, I have been made aware of four cases of suspected social engineering attempts initiated through LinkedIn messaging. I was also contacted and decided to investigate and document the attacker's playbook. How the attack typically unfolds 🔹 Step 1 – Initial LinkedIn Contact The attacker starts with a seemingly legitimate conversation on LinkedIn. 🔹 Step 2 – Meeting Invitation They then send a meeting invitation, often through a scheduling platform such as Calendly. 🔹 Step 3 – The Video Call When you join the meeting, you may notice that the person appears to be working from a noisy call center environment. In my case, and according to others who reported similar encounters, the caller spoke with a Chinese accent. Warning Signs 🚩 🚩 No camera The caller refuses to turn on their camera, usually claiming to have technical issues. 🚩 Personal email address Communication takes place from a Gmail account or another personal email address instead of a...