Phishing attack seeks LinkedIn logins

MM

Melisande Mual

15 Jan 2015 / 5 Min Read

The e-mails warn potential victims of “irregular activities” on their account and say a compulsory security update is required. The e-mails include an html attachment that purports to be a form for performing the update.

The html file is actually a copy of LinkedIn’s website and login page. But the website code in the file has been modified, so if a user logs in, their account credentials are sent to the attackers.

Users are guided to enable two-step verification on their account. If that’s enabled, LinkedIn sends a one-time passcode over SMS that is required to complete logging into an account. Even if the attackers gain a person’s login credentials, they could not take over an account.

Countries:
MM

Melisande Mual

15 Jan 2015 / 5 Min Read

sign up banner
the paypers logo

The Paypers is the Netherlands-based leading independent source of news and intelligence for professional in the global payment community.

 

The Paypers provides a wide range of news and analysis products aimed at keeping the ecommerce, fintech, and payment professionals informed about the latest developments in the industry.

 



No part of this site can be reproduced without explicit permission of The Paypers (v2.7).

Privacy Policy / Cookie Statement

Copyright