Hackers are getting crafty, and now they’re using LinkedIn to pull off their latest scams.
Cybercriminals are migrating their shady tactics to the networking site, making it even tougher for users to protect their digital assets.
Let’s connect!
Taylor Monahan, also known as Tayvano, the web3 security expert shared that these hackers are using slick social media tricks to spread malware, and once the malware is installed, victims lose control of their devices, making it easy for the criminals to swoop in and steal their crypto.
So how do these scammers operate? First, they create fake LinkedIn profiles that look totally legit. They then impersonate recruiters from popular companies, starting conversations with potential victims to build trust.
It’s like the classic “too good to be true” job offer, except this time, it’s happening on LinkedIn!
Building trust with fake job offers
Once they’ve gained a victim’s trust, the hackers dangle enticing job opportunities in front of them. This tactic works wonders, especially for those actively looking for work, or even those just hoping to boost their income.
To make things seem more convincing, they use tools like the Willo Video interviewing platform, which many crypto firms use for real interviews.
Victims are asked to record and send their responses via Willo, but here’s the catch, because the scammers don’t actually use the platform’s video features. Instead, they come up with various technical excuses to keep the con going.
After this setup, they send a malicious link with instructions that, if followed, compromise the victim’s device. Monahan warns that once users click on these links, they hand over control of their devices without even realizing it.
It’s so over
Monahan doesn’t mince words when he says that following these hackers’ instructions is a one-way ticket to disaster. If you follow their instructions, you’re done for, he explains.
The consequences can vary depending on whether you’re using Mac, Windows, or Linux., but one thing is clear, it’s a full-on disaster!
While it’s still unclear how widespread this scam is or how much money has been lost so far, it echoes previous incidents, like when Japanese crypto firm Ginco lost around $305 million due to similar social engineering attacks.
