"LinkedIn Smart Links Attacks Return to Target Microsoft Accounts"
In an attempt to steal Microsoft account credentials, hackers are using LinkedIn Smart Links in phishing attacks to circumvent security measures and avoid detection. Smart Links are a component of LinkedIn's Sales Navigator service, which is used for marketing and tracking, enabling business accounts to email content with trackable links to look at engagement. Smart Links use LinkedIn's domain followed by an eight-character code parameter, so they appear to come from a trustworthy source and are able to evade email security. The exploitation of LinkedIn's Smart Link feature is not novel, as the cybersecurity company Cofense observed the tactic in a late 2022 campaign targeting Slovakian users with fake postal service lures. This article continues to discuss the abuse of LinkedIn Smart Links by hackers.
Bleeping Computer reports "LinkedIn Smart Links Attacks Return to Target Microsoft Accounts"
Submitted by grigby1