LinkedIn is a helpful networking tool that can lead many working professionals to financial gain. Entrepreneurs and the self-employed can drum up new business. Job seekers can find entryways to more lucrative positions.
But users should be well aware of all the risks they face by logging on. That’s because cybercriminals have much to gain from LinkedIn, too.
An Effective LInkedIn Hack
An unidentified hacking group gained access to the networks of two European defense firms between September and December 2019, CyberScoop reports. The hackers posed as professional recruiters and relentlessly pursued targets. They are believed to have targeted proprietary business information.
No state-sponsored relationship has been confirmed. But experts believe the methods are consistent with a hacking group linked to the North Korean government. That’s in part because analysts looking at the malicious code identified a backdoor program known as NukeSped. This program previously has been deployed by North Korean-backed operatives.
A notable feature of these social engineering attempts is the hackers’ persistence. The actors involved in the LinkedIn hacks were pushy and persuasive. In several cases, they moved conversations from the social networking platform to email, From there, the hackers got their marks to download malicious code.
Apart from their pushiness, hackers used to their advantage the kind of specific targeting often seen in spear phishing campaigns. The fake recruiters claimed to represent a corporate rival to the target individual’s employer. The result? The target was much likelier to remain secretive and not disclose the action to their employer.
This incident highlights the importance of understanding spear phishing and other advanced social engineering tactics. Hackers’ schemes will be increasingly difficult to identify as they refine their approaches. So it might take some targeted training to keep bad actors away.
Are you looking for a partner in cybersecurity training? Lunarline can help. Learn more by contacting us online today.