LinkedIn was the most exploited brand in phishing attacks last quarter

Image: wichayada/Adobe Stock

Phishing campaigns similar to exploit fashionable companies and brands, usually with the extremity of capturing the relationship credentials of radical who usage those services. Typically, companies specified arsenic Microsoft and Google are the astir exploited brands. But a report released Tuesday by cyber menace quality supplier Check Point Research notes LinkedIn arsenic the marque astir seen successful the latest phishing campaigns.

SEE: Password breach: Why popular civilization and passwords don’t premix (free PDF) (TechRepublic)

For the archetypal 4th of 2022, LinkedIn accounted for 52% of each phishing-related attempts analyzed by Check Point crossed the world. Its presumption astatine the apical of the rankings revealed a large summation from the erstwhile 4th erstwhile LinkedIn was successful 5th position, accounting for lone 8% of each phishing attempts. During the quarter, LinkedIn snagged the apical spot from DHL, which dropped to 2nd place, appearing successful 14% of each attempts.

Beyond LinkedIn and DHL, different brands that appeared connected the database included Google, Microsoft, FedEx, WhatsApp, Amazon, Maersk, AliExpress and Apple. The exploitation of LinkedIn is portion of a larger strategy successful which attackers are leveraging societal networks up of shipping companies similar DHL and exertion players similar Google and Microsoft.

In 1 phishing run revealed by Check Point, the attacker sent an email successful Chinese spoofing the LinkedIn marque with logos and images from the company. The email itself was sent from the code “LinkedIn (smtpfox-6qhrg@tavic.com.mx)” and contained the taxable enactment “M&R Trading Co.,Ltd.” The connection prompted the recipient to click connected a link, resulting successful a login leafage that asked them to participate their LinkedIn username and password. Of course, immoderate credentials entered were past taken by the attackers.

With shipping companies besides being exploited successful phishing attacks, different run abused Danish shipper Maersk. Using the branding and images from Maersk, an email was sent from an code called “Maersk Notification (service@maersk.com)” with the taxable enactment of “Maersk: Verify Copy for Bill of Lading XXXXXXXXX acceptable for verification.” The connection prompted the idiosyncratic to download an Excel record named “Transport-Document.” But downloading and opening the attachment would infect the strategy with the Agent Tesla distant entree Trojan.

“Criminal groups orchestrate these phishing attempts connected a expansive scale, with a presumption to getting arsenic galore radical to portion with their idiosyncratic information arsenic possible,” said Omer Dembinsky, information probe radical manager astatine Check Point Software. “Some attacks volition effort to summation leverage implicit individuals oregon bargain their information, specified arsenic those we’re seeing with LinkedIn. Others volition beryllium attempts to deploy malware connected institution networks, specified arsenic the fake emails containing spoof bearer documents that we’re seeing with the likes of Maersk.”

To assistance you debar becoming a unfortunate of phishing emails, Check Point offers the pursuing tips:

1. Be wary erstwhile asked to supply idiosyncratic accusation and credentials astatine websites and concern applications.
2. Think earlier you unfastened immoderate email attachment oregon click connected a nexus successful a message. This is particularly existent if the email seems to travel from a institution specified arsenic LinkedIn oregon DHL, arsenic these whitethorn beryllium phishing messages.
3. Scan incoming emails for immoderate misspellings, typos and different mistakes.
4. Watch retired for emails with requests of an urgent nature, specified arsenic 1 asking you to alteration your password.

“The champion defence against phishing threats, arsenic ever, is knowledge,” Dembinsky added. “Employees successful peculiar should beryllium trained to spot suspicious anomalies specified arsenic misspelled domains, typos, incorrect dates and different details that tin exposure a malicious email oregon substance message. LinkedIn users successful peculiar should beryllium other vigilant implicit the people of the adjacent fewer months.”