Threat Awareness – Unsophisticated Campaign Likely Behind Sudden Surge in Attacks Targeting LinkedIn Accounts

Cyberint has written a blog post detailing its research into a widespread campaign targeting LinkedIn accounts. Researchers have observed a surge in Google searches for LinkedIn account hacking and some victims have shared that they’ve received ransom notes with instructions on how to regain access to their account.

The attack itself is a standard account compromise, with threat actors gaining access and changing the account email and password to prevent recovery. However, the campaign appears to be relatively unsophisticated, as many would-be victims report their accounts have been temporarily locked instead, likely a sign of brute force tactics. Members should make employees aware of the risk to their LinkedIn accounts and use this campaign to motivate them to enable stronger security options, such as multifactor authentication. Read more at Bleeping Computer.