Earlier this month, Symantec observed an unusual amount of phishing emails targeting LinkedIn users. These phishing emails have been attempting to get users to give up their passwords to the criminals. Below is an example of a LinkedIn phishing email.
Like most phishing emails, it comes with an attachment. Once you download this attachment, malware is installed onto your computer and then used to track what you do, save and store information, and send that information back to the hacker.
There are key things you should always be doing to avoid becoming a victim of emails like this:
- Use an antivirus application that includes integrated anti-spyware.
- Act with caution when downloading programs that can compromise your computer's security safeguards.
- Do not open file attachments received by e-mail unless the source of the attachment is known and trusted.
Another step you can take to reduce the risk of fraud as a LinkedIn user is to use two-step verfication.
Implement Two-step verification on LinkedIn
Two-step verification allows you to send a text message to yourself with a special verification code each time you log into LinkedIn from a new device or browser.
To setup two-step authentication, follow these steps:
- Access the Privacy & Settings section (click on your small profile image in the upper right of the screen).
- In the lower left of the screen select the Account tab and click Manage security settings.
- From the Two-step verification for sign-in area, select On and follow the prompts to enter your cell phone number.