LinkedIn users are being warned about a wave of attacks that use fake policy violation messages to steal account credentials. The scam is targeting all 1.2 billion users of the professional networking platform.
Hackers send replies to posts claiming that the user violated LinkedIn rules. These messages often include a link that appears to be from LinkedIn, sometimes using the platform’s official URL shortener, lnkd.in, making it hard to spot the scam. Users are asked to visit the link to “appeal” the policy violation, which is actually a trap to steal login information.
Cybersecurity experts say that LinkedIn accounts are especially valuable to hackers. Accessing an account can reveal professional contacts, colleagues, and client information, making them a high-value target despite being smaller than platforms like Facebook.
Michael Tigges, a senior security operations analyst at Huntress, advises caution: “Account moderation actions and other critical information are often communicated out of band, such as via email or through account control panels. It is critical that users examine links that may masquerade as legitimate behind URL shorteners.”
LinkedIn has confirmed it is aware of the attacks and is taking steps to address them. Users are encouraged to report suspicious activity and avoid clicking links in messages claiming policy violations.
The key takeaway: never click links in unexpected policy violation messages. Always verify account alerts directly through LinkedIn’s official website or app.
