Phishing actors are abusing LinkedIn’s Smart Link feature to bypass email security products and successfully redirect targeted users to phishing pages that steal payment information.
Users of LinkedIn Sales Navigator and Enterprise are entitled to the Smart Link function, which enables them to deliver a group of up to 15 documents via a single trackable link. In addition to being flexible, Smart Link offers data to marketing professionals, including information on who watched the shared material and how long they viewed it. Therefore, phishing scammers aren’t simply utilizing Smart Link to get beyond email security measures; they can also learn how effective their campaigns are and use that information to improve their lures. Threat experts at Cofense have noticed campaigns luring Slovakian users with phony postal service lures, which has led them to notice the new trend of Smart Link misuse for phishing.