The emails are distributing the ConnectWise Remote Access Trojan
There are multiple red flags, including fake companies, fake images, and more
Cybercriminals are spoofing LinkedIn notification emails to deliver the ConnectWise Remote Access Trojan (RAT) malware, experts have warned.
A new report from cybersecurity researchers Cofense Intelligence notes the phishing campaign likely started in May 2024 with an email mimicking a notification LinkedIn would send to a person when they receive an InMail message. The business platform does not allow people who are not connected to exchange messages, unless the sender is a Premium (paying) member. Then, they can use a service called InMail to reach out to people with whom they are not connected.
Leave a comment