LinkedIn Scams
In the digital age, LinkedIn plays an increasingly significant role in business communication. But how safe is it to use, an how can we spot LinkedIn scams? LinkedIn has serve us in multiple use cases for networking, job hunting, business development, learning, and unfortunately, for scamming unsuspecting users.
I got stuck a few years ago when the number of LinkedIn users was around 650 million. Well, that has significantly surpassed by 2023 (the 20th anniversary of the company), with the current number being 930 million, and nearly half of them are active users.
LinkedIn is considered a valuable tool for business networking. I often smile at comments where self-appointed moderators lecture other users that LinkedIn is not Facebook, and they should behave seriously. Indeed, serious professionals frequent this platform, and cat pictures and glittery images are deemed inappropriate. The misled users probably haven’t read the terms of use. We may come across content that simply doesn’t align with the LinkedIn culture. But that’s not the focus here.
LinkedIn v.2023
Platforms like LinkedIn facilitate networking and discovering business opportunities widely. If you want to delve into current business and demographic trends, you can find more details here.
Besides the global networking opportunity, these platforms also pose evident dangers, as scammers hiding behind fake profiles can easily exploit unsuspecting users.
But what are these dangers?
“LinkedIn Scam” –or LinkedIn scam scheme operates on the LinkedIn platform with the aim of extracting money or personal information from people, often through fake job offers or business opportunities, payment requests, or misuse of others’ personal data.
LinkedIn Scams in Job Postings
And who is the most vulnerable group? Of course, job seekers. With many companies undergoing layoffs in 2023, LinkedIn seems like an obvious solution for those entering the job market. Your LinkedIn profile is viewed by 9 out of 10 recruiters, so it’s essential to be present, considering that allegedly 3 million people find jobs annually, and every second, 8 users are hired through LinkedIn.
HR professionals, can you confirm if the ratios are similar in your country?
One thing is certain – LinkedIn is full of fake job offers.
NordLayer surveyed 500 respondents in Canada, the United Kingdom, and the United States. The survey was conducted by an external agency between March 15-25, 2023. According to the report, 117 job applications are submitted per second (!) on the platform, providing LinkedIn scammers with an ideal environment to create seemingly genuine job postings for the purpose of collecting personal data or money.
Cybercriminals use stylized HTML templates, fake names, LinkedIn logos and icons, and familiar phrases (“based on your profile, you’re a good fit for this job”) to deceive unsuspecting job seekers. The scam emails even include details such as the company’s exact address, the unsubscribe button, customer service contact, and the recipient’s information. The emails contain a link redirecting users to a website that closely resembles the LinkedIn interface, specifically the job portal login page. If someone tries to log in on this page, their authentication data immediately falls into the hands of hackers.
Receiving connection invitations is common on the platform. Hackers use this trust-based business networking culture to initiate conversations and share malicious content through a link, expecting LinkedIn users to click on it. While LinkedIn is a platform where everyone showcases their best side, courtesy, potential opportunities, and a professional image generally make us trust other LinkedIn members more than on other social media platforms.
The interest in scam attempts is intriguing because, according to LinkedIn, automated defense blocked 87.4% of new fake accounts, and the remaining 12.6% were stopped after manual investigations and restrictions. Proactive measures stopped 99.6% of fake accounts before members reported them.
So, what we experience is only the activity of 0.4% of LinkedIn scammers.
Phishing Emails
Another popular LinkedIn scam is phishing, where a scammer poses as a representative of a well-known company or professional and sends unsolicited messages or emails requesting sensitive information. We’ve all encountered fake profiles of self-proclaimed crypto investment gurus, American (actually Bangladeshi) SEO specialists, or top sales supermodels. The severity of the situation is highlighted by the fact that LinkedIn phishing attacks have increased by 232% in February this year alone.
In another version of this scam, a fake profile is used to assess certain market opportunities, enabling direct information gathering from competitor companies, etc. While creating a fake profile is not illegal, it is simply unethical.
One of my favorite LinkedIn authors, Dave Harland, makes a sport out of confusing presumably malicious new LinkedIn connections with communication that drives them crazy, making their online conversations public, where the scammer usually disappears after a few sentences. Since new fake profiles register every minute, intending to extract money and data from the LinkedIn community, it might not have been the best idea for LinkedIn to regularly publish detailed demographic and income data about its users. (e.g., the number of millionaires, top executives, etc.)
What are the most common scams, and how can we defend against them?
LinkedIn Scammer Corporate Profiles
Some LinkedIn scammers create fake corporate profiles on LinkedIn, posing as representatives of reputable companies. These profiles typically lure people with attractive offers and business opportunities and then carry out various scams, such as money theft or extracting personal information. (See also: unsolicited gurus and experts)
Identity Theft
Identity theft is a common phenomenon on LinkedIn. Scammers create fake profiles in the names of other users and use these new profiles to deceive people and commit various abuses, such as phishing attacks or financial fraud. Let’s add that LinkedIn itself has encountered security issues, notably the massive data breach in February 2023, where millions of LinkedIn account names and passwords leaked and became public due to cybersecurity flaws. I hope everyone has changed their passwords since then!
Spreading Fake News
On LinkedIn, not only corporate profiles but also individual profiles can be used by scammers to spread fake news. This could be disinformation spread for political or economic manipulation, causing serious harm to the individuals or businesses involved. (At one point, I noticed a biased news feed about the Israeli-Arab conflict on my page. I simply blocked these users and pages, but we’ve seen enough examples of stock or crypto market manipulation.)
It’s important to be aware of this danger and approach information seen on LinkedIn critically.
Fake Recruiters
Some LinkedIn scammers use LinkedIn to contact employees pretending to be disguised recruiters. This gives them the opportunity to obtain personal information or even ask for money in exchange for alleged job offers. (See: scam job postings)
Reimbursement Scams
There are several are cases where LinkedIn is used to publish fraudulent reimbursement offers. LinkedIn scammers pretend to be representatives of well-known companies and promise compensation to victims if they advance some reimbursement costs. However, these reimbursement costs end up in the scammers’ pockets, and the victims never see their money again.
What should we do, and what precautions can we take to protect ourselves?
Check the Profile’s Credibility
Always check the credibility of LinkedIn profiles before accepting any connection requests. Examine the related information, track activities, and verify if the profile is genuine. If the connection has only a few contacts, the information is not properly filled out, or the profile is very recently created, be suspicious. Based on the fact that there are no mutual connections, I don’t necessarily reject an invitation, but some people have this rule. Everyone has the right to decide who they connect with.
Be Cautious When Accepting Connections
Don’t blindly accept every connection request. Choose the people and companies you connect with carefully and thoroughly examine them before confirming the invitation. Some people have a rule of only connecting with those they have had personal contact with. Since COVID, many have reconsidered this principle, as many acquaintances have not been met in person, but their identity can be verified.
Protect Your Personal Data
Don’t share confidential personal information with unknown LinkedIn connections. Never provide your bank account, password, or other sensitive information during online communication. This is a rule applicable to every platform! Don’t click on any links in LinkedIn messages that may seem suspicious; check the sender’s profile beforehand.
Beware of Fake News and Disinformation
Critically evaluate the information you see on LinkedIn. Check the source and credibility of the information and don’t spread information you’re not 100% sure about its authenticity. (I know, I know, it’s hard to resist.)
Report Suspicious Activities
If you notice suspicious or abuse-indicative activity on LinkedIn, report it to the operator. This can help other users obtain protection and prevent further LinkedIn scams. Simply report the profile you think its suspicious. If a profile is very new on LinkedIn, you don’t have common contacts and he/she tries to contact you with a strange invitation, be alert.
Update Privacy Settings
Ensure that your LinkedIn profile’s privacy settings are properly configured. Limit public visibility and access to personal data for users you are not connected with. Use two-factor authentication.
Be Cautious About Advertisements
Don’t click on suspicious ads or external links on LinkedIn. Check the source and credibility of the ads before sharing any personal information or initiating any transactions.
LinkedIn scams and abuses can pose a threat to users who don’t use the platform with proper caution. Always be cautious when connecting with others and sharing personal information, and be skeptical of fake news and suspicious offers on LinkedIn. When using LinkedIn, always verify the credibility of profiles, report suspicious activities, and update your privacy settings.
“So, will you accept the connection?”