Faked LinkedIn email targets bank account details

LinkedIn’s local office has acknowledged a sudden upsurge in email-borne attempts to dupe bank account log-ons and other details from its users.

The business networking site has 75 million members worldwide – 250,000 of whom are in New Zealand.

Networking company Cisco has circulated a security warning about the attack, saying:

Victims are emailed an alert link with a fictitious social media contact request … Clicking the link, victims are taken to a web page that says "PLEASE WAITING.... 4 SECONDS" and redirects them to Google.

During those four seconds, the victim's PC is infected with the ZeuS data theft malware by a drive-by download. ZeuS embeds itself in the victim's web browser and captures personal information, such as online banking credentials, and is widely used by criminals to pilfer commercial bank accounts.

Watch that address ... and be wary of people you don't know
Your correspondent has hand the bogus email (pictured above) land in his inbox multiple times; Twitter chatter suggests he's far from alone. Cisco said that, at one point in the early stages of the attack, the LinkedIn attack accounted for one in every spam messages sent.

Yesterday, a rep for LinkedIn’s Australia-New Zealand office confirmed the problem, telling NBR the company was “reaching back” to several customers who had contacted it about the issue.

The fake emails have realistic formatting, but are not sent to a member’s actual address, so check the details on your inbox address bar before you open any LinkedIn email.

The company also advises members to never click on a request to link from a person they have never heard of.

Yeah, I'm dumb
Stupidly, your correspondent did click on a link in one of the LinkedIn fake emails, despite Google Apps correctly consigning it to a Spam folder).

Luckily his antivirus software seems to have thwarted any attack, as his bank balance is no lower than usual.

NBR is in good company. PCWorld.com contributor Daniel Tynan confesses he also clicked on one of the fraudulent messages.


1 · Got a question about this story? Leave it in Comments & Questions below.

This article is tagged with the following keywords. Find out more about MyNBR Tags

1 Comment & Question

Commenter icon key: Subscriber Verified

thank you in joining me in my curiosity/stupidity. and for the shout out. I think.

fortunately, I think my internet security software trapped and killed that trojan before it did any damage. hope yours did the same.

dt

Reply
Share
  • 0
  • 0

Post New comment or question

Plain text

  • No HTML tags allowed.
  • Web page addresses and e-mail addresses turn into links automatically.
  • Lines and paragraphs break automatically.

NZ Market Snapshot

Forex

Sym Price Change
USD 0.7276 -0.0007 -0.10%
AUD 0.9588 -0.0016 -0.17%
EUR 0.6415 -0.0098 -1.50%
GBP 0.5675 -0.0050 -0.87%
HKD 5.6756 -0.0046 -0.08%
JPY 81.5860 0.0930 0.11%

Commods

Commodity Price Change Time
Gold Index 1246.9 2.870 2017-06-27T00:
Oil Brent 46.7 0.820 2017-06-27T00:
Oil Nymex 44.2 0.870 2017-06-27T00:
Silver Index 16.6 0.020 2017-06-27T00:

Indices

Symbol Open High Last %
NZX 50 7626.4 7626.4 7626.4 -0.36%
NASDAQ 6227.9 6234.3 6247.1 -1.61%
DAX 12728.5 12751.2 12770.8 -0.78%
DJI 21411.2 21440.6 21409.5 -0.46%
FTSE 7446.8 7451.7 7446.8 -0.17%
HKSE 25911.2 25929.6 25871.9 -0.12%
NI225 20229.1 20250.1 20153.3 0.36%
ASX 5714.2 5714.2 5714.2 -0.11%