A noteworthy phishing campaign that abuses LinkedIn smart links redirects was recently observed by the Cofense Phishing Defense Center. This new, targeted campaign illustrates that while exploiting a well-known postal brand is nothing out if the ordinary, such phishing emails continue to go undetected by popular email gateways designed to protect end users.
Threat actors attempt to entice users into believing that the Slovakian Postal Service is requesting pending shipping costs. This is a very adaptable strategy due to LinkedIn’s slinks features and the variety of postal brands available. Threat actors abuse legitimate LinkedIn features with added unique alphanumeric variables at the end of the URL to redirect users to malicious websites. ...read more!
