DuckDuckGo Ups Ante: Gives $300K to 'Raise the Standard of Trust'
For the seventh year in a row, the search engine that promises not to stalk your online moves puts its money where its mouth is, this year by donating $300,000 to organizations that
System76 Saying Goodbye to Bland Design
Considering that System76 chose to unveil its new design plans to The Linux Gamer -- no invite went to FOSS Force, BTW -- we can't help but wonder if a System76 Steam Machine isn't in the works.

The Screening
The Great Debian Iceweasel/Icedove Saga Comes to an End
Now that Thunderbird is back in the Debian repositories, the decade long dispute that led to all Mozilla products in Debian being rebranded has ended.

The hatchet is finally completely
Back Yard Linux
It's not as lonely being a Linux user as it once was. These days you're liable to find people throughout your neighborhood using Linux.

My how times have changed.

It wasn't long ago that Linux
No, Evil Hackers Aren't After You
Humankind has outgrown the need to have monsters hiding under our beds. Now we let them hide in our phones, computers and microwave ovens.

Roblimo's Hideaway

OMG! I think I see a giant camera lens on
Should the U.S. Army Have Its Own Open Source License?
Should the U.S. armed forces begin releasing software under an OSI approved open source license rather than as public domain?

Roblimo's Hideaway

This question has generated many pixels'
GitHub CEO Chris Wanstrath on Open Source
Did you know that the software Stephen Hawking uses to speak is open source and that it's available on GitHub? Neither did we.

The Screening Room

At the Computer History museum, GitHub CEO Chris
September 5th, 2013

Phishing Scam Masquerades As LinkedIn Connection Request

We’ve noticed in the last week there’s a new email phishing campaign that uses emails masquerading as LinkedIn connection requests.

Although most tech savvy users long ago learned email best security practices (don’t click on links in emails unless you’re absolutely sure you know the source of the email), sometimes we get lulled into complacency and automatically click on links from trusted sources.

Most of us are probably keenly aware of the usual we’re-going-to-close-your-bank-account-and-lock-up-all-your-money emails that pretend to be from financial institutions and delete them out of hand. But many of us might have fallen into the trap of automatically clicking on links that seem to be from the social sites we use–especially when the email looks like the real thing.

The phishing emails we’ve been seeing that purport to be from LinkedIn look exactly like any other connection request from the social network. In the emails we’ve received, it appears as if the parties behind the phishing attempts have gone to the trouble of actually looking at our LinkedIn profiles, since the “connection requests” always come from people with tech creds, which would be normal for people wanting to connect with us. However the links to accept the requests or to view the profiles don’t point to LinkedIn.

So far, we’ve received emails that link to sites with top level Russian and Polish domains (.ru and .pl) and a .com address that’s registered to an organization in San Jose through a domain registration service in Australia. It’s not clear whether the purpose behind these attempts is merely spam for ecommerce sites or something more malicious.

1 comment to Phishing Scam Masquerades As LinkedIn Connection Request

  • Eddie G.

    I’ve learned that when I receive any kind of request or notification from my social sites (FB & LinkedIn)via e-mail I go DIRECTLY to the web-site to make sure the info is legit. Which sometimes it isn’t (You get the “Friend Request” from “Mr. XYZ” of Austria….only to find out when you go to your LinkedIn homepage that there IS no request from Mr. XYZ…and when you do a people search for him?…he’s not found!) It’s a bit of a hassle yes……but in this day & age of snooping….spying….hacking….and cyber-crime….it’s ALWAYS better to be safe than SORRY!