Fake LinkedIn emails to reset your password

We see LinkedIn in the news quite often because of their recent campaigns in all the media. What the company doesn’t proudly advertise is the fact that their brand is lately often used  in various spam campaigns.  Most of these spam campaigns are nothing else than puny attempts to redirect users to online pharmacy websites.

Below are two screenshots, can you see which was is fake and which one is real?

 

In our case, the first screenshot is the real email and the second one is the fake email.

The first email is shorter and it appears to contain the link in its plain-text form (which can be easily faked).

For an unexperienced user, it is very hard to spot the difference. Unless you move your mouse over the links you can’t really differentiate them. The emails are sent to your email address which you probably use for LinkedIn as well, sometimes are calling you using the first and last names from the From field of the email and the text is copied from the original LinkedIn email.

In a deeper analysis, we see clearly that they are fake because the headers can’t really hide their origin: sent most probably via bots from various areas of the world.

As an advice, never click on links in the emails which you didn’t solicit – just delete them.

 

Sorin Mustaca

Data Security Expert