Spot That LinkedIn Scam!
If you're viewing this page, you were probably led here by a phishing test. Don't worry, none of your data or credentials have been compromised.
Hackers and scammers have given up direct attacks against secure systems and moved onto an attack style that delivers better results
FOOL THE USER!
How can Security Experts and Administrators help to stop these kinds of attacks?
MAKE SMARTER USERS!
How Could we have known this was a fake email?
When you see a link in your email client or web browser, try hovering your mouse over the link without clicking it. If you do so, the REAL location of the link will appear. Does it look suspicious?
In this case, we can see that the link is not what it appears to be. At first glance it may look OK, but closer inspection shows that this is not a LinkedIn domain URL, but instead nnicrosof.com. Perhaps closed enough to be missed at first glance.
Who sent this email in the first place?
While it appears to be from "LinkedIn Connections," we can see that the real sender's address is a suspicious looking gmail account. Always be weary of accounts from free email providers- those are the first that a scammer will use, in order to minimize costs.
WHAT TO DO NEXT TIME!
Go straight to the source!
If you get an email that you're not 100% confident in, but you want to know for sure... simply go straight to the source. Don't click the link in the email, but instead open up your web browser and type in the URL of the provider manually. When you log into the legitimate site, if there is action required from you... you'll be notified in the dashboard or menu.