Collecting Cyber-News from over 60 sources

Tag: linkedin

Hackergruppe Nickel Alley täuscht IT-Experten mit gefälschten Jobs

Apr 7, 2026 3:52 PM

Tags: access, cyberattack, github, jobs, linkedin, supply-chain

Die nordkoreanische Hackergruppe Nickel Alley setzt ihre perfiden ‘Contagious Interview”-Kampagnen fort: Mit gefälschten LinkedIn-Unternehmensprofilen, fingierten Jobangeboten und manipulierten Github-Repositorien lockt sie gezielt Softwareentwickler in die Falle. Das Ziel: Die Installation des gefährlichen <> einem Remote-Access-Trojaner, der nicht nur Kryptowährungen stiehlt, sondern auch den Weg für Industriespionage und Supply-Chain-Angriffe ebnet. Die Masche: Fake-Jobs, […] First seen…
Sophos deckt gefälschte Jobangebote auf Karrierenetzwerken auf

Apr 7, 2026 3:52 PM

Tags: github, linkedin, sophos

Auf den ersten Blick wirkt alles seriös: Professionell gestaltete LinkedIn-Profile, glaubwürdige Unternehmensauftritte und scheinbar legitime GitHub-Repositories. First seen on infopoint-security.de Jump to article: www.infopoint-security.de/sophos-deckt-gefaelschte-jobangebote-auf-karrierenetzwerken-auf/a44511/
BrowserGate: LinkedIn Tracks 6,000+ Browser Extensions on Users’ PCs

Apr 5, 2026 6:51 PM

Tags: data, linkedin, privacy

LinkedIn is accused in the BrowserGate report of tracking 6,000+ browser extensions on users’ PCs, raising concerns over privacy and data collection practices. First seen on hackread.com Jump to article: hackread.com/browsergate-linkedin-track-browser-extensions-user-pc/
UNC1069 Targets Node.js Maintainers via Fake LinkedIn, Slack Profiles

Apr 4, 2026 6:50 PM

Tags: group, linkedin, malware, north-korea, open-source

North Korean group UNC1069 targets Node.js maintainers using fake LinkedIn and Slack profiles to spread malware and compromise open source packages. First seen on hackread.com Jump to article: hackread.com/unc1069-node-js-maintainer-fake-linkedin-slack-profile/
UNC1069 Targets Node.js Maintainers via Fake LinkedIn, Slack Profiles

Apr 4, 2026 6:50 PM

Tags: group, linkedin, malware, north-korea, open-source

North Korean group UNC1069 targets Node.js maintainers using fake LinkedIn and Slack profiles to spread malware and compromise open source packages. First seen on hackread.com Jump to article: hackread.com/unc1069-node-js-maintainer-fake-linkedin-slack-profile/
LinkedIn secretly scans for 6,000+ Chrome extensions, collects data

Apr 4, 2026 4:51 PM

Tags: browser, chrome, data, linkedin, microsoft

A new report dubbed “BrowserGate” warns that Microsoft’s LinkedIn is using hidden JavaScript scripts on its website to scan visitors’ browsers for installed extensions and collect device data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/linkedin-secretly-scans-for-6-000-plus-chrome-extensions-collects-data/
LinkedIn Hidden Code Secretly Scans Users’ Computers for Installed Software

Apr 4, 2026 7:51 AM

Tags: computer, corporate, cyber, linkedin, microsoft, software

A new investigation by Fairlinked e.V. claims that Microsoft-owned LinkedIn is running a massive, undisclosed corporate surveillance operation. According to the >>BrowserGate<< report, hidden code on LinkedIn's website secretly scans the computers of its one billion users to detect installed software and browser extensions. This scanning reportedly happens without user consent, disclosure, or any mention…
LinkedIn secretely scans for 6,000+ Chrome extensions, collects data

Apr 3, 2026 11:52 PM

Tags: browser, chrome, data, linkedin, microsoft

A new report dubbed “BrowserGate” warns that Microsoft’s LinkedIn is using hidden JavaScript scripts on its website to scan visitors’ browsers for installed extensions and collect device data. First seen on bleepingcomputer.com Jump to article: www.bleepingcomputer.com/news/security/linkedin-secretely-scans-for-6-000-plus-chrome-extensions-collects-data/
Vietnam-Linked PXA Stealer Campaign Exploits LinkedIn to Target Professionals Globally

Apr 2, 2026 11:51 AM

Tags: data, data-breach, exploit, linkedin, malware, social-engineering, threat

A newly exposed global malware campaign reveals how PXA Stealer has been wielded by Vietnam”‘linked actors to siphon sensitive data from professionals across multiple countries using trusted platforms like LinkedIn. First documented in late 2024, this campaign has evolved into a new threat that leverages social engineering, advanced payload delivery, and stealthy execution to outmaneuver…
LinkedIn Phishing Scam Uses Fake Notifications to Hijack Accounts

Apr 1, 2026 8:31 PM

Tags: access, credentials, linkedin, phishing, scam

A LinkedIn phishing scam uses fake notifications and lookalike domains to steal credentials, hijack accounts, and access sensitive professional data. First seen on hackread.com Jump to article: hackread.com/linkedin-phishing-scam-fake-notificatioms-hijack-accounts/
LinkedIn-Phishing: Fake-Nachrichten greifen Zugangsdaten ab

Mar 31, 2026 11:29 AM

Tags: linkedin, login, phishing

Eine neue Phishing-Kampagne nutzt täuschend echte LinkedIn-Benachrichtigungen, um Nutzer auf gefälschte Login-Seiten zu locken. First seen on it-daily.net Jump to article: www.it-daily.net/it-sicherheit/cybercrime/linkedin-phishing
Linkedin & Persona: In drei Minuten in den Datenschutz-Wahnsinn

Mar 31, 2026 10:29 AM

Tags: linkedin

Ich habe meine Identität auf Linkedin verifiziert. Hier erzähle ich, was ich preisgegeben habe, nur um ein blaues Häkchen zu bekommen. First seen on golem.de Jump to article: www.golem.de/news/linkedin-persona-in-drei-minuten-in-den-datenschutz-wahnsinn-2603-206707.html
Phishers Pose as Palo Alto Networks’ Recruiters for Months in Job Scam

Mar 25, 2026 4:47 PM

Tags: data, jobs, linkedin, network, phishing, scam, tactics

A series of campaigns that began in August aim to defraud job candidates, using psychological tactics and data scraped from LinkedIn profiles. First seen on darkreading.com Jump to article: www.darkreading.com/cyberattacks-data-breaches/phishers-pose-palo-alto-networks-recruiters-job-scam
Your MFA isn’t broken, it’s being bypassed, and your employees can’t tell the difference

Mar 19, 2026 11:09 AM

Tags: access, attack, authentication, awareness, breach, credentials, cryptography, defense, detection, email, fido, finance, google, Hardware, identity, jobs, linkedin, login, malicious, mfa, microsoft, monitoring, passkey, password, phishing, service, theft, threat, vulnerability

Three failures that keep showing up: Through my research into adversary-in-the-middle attacks and reviewing industry incident reports, I have identified three consistent failures that make these attacks successful. 1. We trained our people for the wrong threat Most security awareness programs still teach the same things: Look for misspellings, check the sender address, hover over…
Your MFA isn’t broken, it’s being bypassed, and your employees can’t tell the difference

Mar 19, 2026 11:09 AM

Tags: access, attack, authentication, awareness, breach, credentials, cryptography, defense, detection, email, fido, finance, google, Hardware, identity, jobs, linkedin, login, malicious, mfa, microsoft, monitoring, passkey, password, phishing, service, theft, threat, vulnerability

Three failures that keep showing up: Through my research into adversary-in-the-middle attacks and reviewing industry incident reports, I have identified three consistent failures that make these attacks successful. 1. We trained our people for the wrong threat Most security awareness programs still teach the same things: Look for misspellings, check the sender address, hover over…
Anton’s Vibe Coding Experience: A Reflection on Risk Decisions

Mar 18, 2026 12:11 AM

Tags: access, ai, application-security, authentication, business, compliance, corporate, credentials, data, google, linkedin, LLM, risk, tool

Look, I’m not a developer, and the last time I truly “wrote code” was probably a good number of years ago (and it was probably Perl so you may hate me). I am also not an appsec expert (as I often remind people). Below I am describing my experience “vibe coding” an application. Before I go…
Big Tech Unites: Industry Giants Sign Global Accord to Combat AI-Driven Scams

Mar 16, 2026 10:10 PM

Tags: adobe, ai, defense, google, linkedin, microsoft, network, openai, scam, service, technology

In a rare display of unified defense, eight of the world’s most powerful technology firms have signed a landmark pact to disrupt the global scam networks currently siphoning billions of dollars from consumers. The Online Services Accord Against Scams signed by Google, Amazon.com Inc., Microsoft Corp., Meta Platforms Inc., OpenAI, LinkedIn, Adobe Inc., and Match..…
USENIX Security ’25 (Enigma Track) Security Theater Is Canceled: Time For A Real Show

Mar 10, 2026 5:47 PM

Tags: linkedin

Author, Creator & Presenter: Lea Kissner, LinkedIn Our thanks to USENIX Security ’25 (Enigma Track) (USENIX ’25 for publishing their Creators, Authors and Presenter’s tremendous USENIX Security ’25 (Enigma Track) content on the Organizations’ YouTube Channel. Permalink First seen on securityboulevard.com Jump to article: securityboulevard.com/2026/03/usenix-security-25-enigma-track-security-theater-is-canceled-time-for-a-real-show/
Fake LinkedIn Interview Used by Lazarus Hackers to Target AllSecure CEO

Mar 10, 2026 2:47 PM

Tags: ceo, deep-fake, group, hacker, jobs, lazarus, linkedin, north-korea, technology

Researchers at AllSecure have revealed how North Korean hackers from the Lazarus Group used a fake LinkedIn job interview and deepfake technology to target their CEO. First seen on hackread.com Jump to article: hackread.com/fake-linkedin-interview-lazarus-hackers-allsecure-ceo/
ClickFix Campaign Exploits Fake LinkedIn VCs to Spread Malware Among Crypto and Web3 Experts

Mar 5, 2026 11:47 AM

Tags: captcha, crypto, cyber, exploit, linkedin, malicious, malware, social-engineering

A highly coordinated malware campaign that targets cryptocurrency and Web3 professionals through fake venture capital (VC) identities on LinkedIn. The operation combines advanced social engineering with cross-platform payloads and a ClickFix-style fake CAPTCHA flow that tricks users into running malicious commands on their own systems. Attackers pose as executives from fictitious funds such as SolidBit…
ClickFix Campaign Exploits Fake LinkedIn VCs to Spread Malware Among Crypto and Web3 Experts

Mar 5, 2026 11:47 AM

Tags: captcha, crypto, cyber, exploit, linkedin, malicious, malware, social-engineering

A highly coordinated malware campaign that targets cryptocurrency and Web3 professionals through fake venture capital (VC) identities on LinkedIn. The operation combines advanced social engineering with cross-platform payloads and a ClickFix-style fake CAPTCHA flow that tricks users into running malicious commands on their own systems. Attackers pose as executives from fictitious funds such as SolidBit…
Airport Incident Response

Feb 26, 2026 1:44 PM

Tags: incident response, linkedin

I was going to be click-baity and title this post, “what incident response taught me about mixing up airports”, but honestly, looking at LinkedIn these days, I think the humour would be lost. I’d end up with 50 new followers (75 if I ended the post with the word, “Agree?” Let me walk you through……
Airport Incident Response

Feb 26, 2026 1:44 PM

Tags: incident response, linkedin

I was going to be click-baity and title this post, “what incident response taught me about mixing up airports”, but honestly, looking at LinkedIn these days, I think the humour would be lost. I’d end up with 50 new followers (75 if I ended the post with the word, “Agree?” Let me walk you through……
Russian group uses AI to exploit weakly-protected Fortinet firewalls, says Amazon

Feb 24, 2026 6:01 AM

Tags: access, ai, api, attack, authentication, business, ciso, control, credentials, cybersecurity, data-breach, detection, exploit, firewall, fortinet, group, Internet, linkedin, malicious, mfa, monitoring, network, password, russia, software, threat, tool, vpn, vulnerability

Recommendations: The Amazon report makes a number of recommendations to network admins with FortiGate devices. They include ensuring device management interfaces aren’t exposed to the internet, or, if they have to be, restricting access to known IP ranges and using a bastion host or out-of-band management network. As basic cybersecurity demands, all default and common…
TDL 016 – Speed, Risk, and Responsibility in the Age of AI – Rafael Ramirez

Feb 20, 2026 9:02 PM

Tags: access, ai, antivirus, automation, awareness, business, ciso, cloud, control, country, cyber, data, defense, detection, dns, firewall, governance, government, hacker, ibm, incident response, intelligence, Internet, law, linkedin, login, mfa, microsoft, network, risk, saas, service, skills, software, startup, strategy, technology, threat, tool, training, update, vulnerability, windows, zero-trust

Summary In a recent episode of The Defenders Log, host David Redekop sat down with cyber security expert Rafael Ramirez to navigate the rapidly shifting landscape of AI security. As we move deeper into 2026, the duo explored how artificial intelligence has evolved from simple chatbots into powerful, autonomous “agentic” systems. The Double-Edged Sword of…
Chinese hackers exploited zero-day Dell RecoverPoint flaw for 1.5 years

Feb 19, 2026 12:00 AM

Tags: access, backdoor, china, credentials, detection, endpoint, exploit, firewall, flaw, hacker, linkedin, linux, malware, mandiant, network, service, vmware, zero-day

Pivot techniques: In addition to the payloads themselves, the investigation also revealed new techniques. For example, the legitimate shell script convert_hosts.sh that exists on these appliances has been modified to include the path of the backdoors to achieve persistence.The SLAYSTYLE web shell, which is designed to receive commands over HTTP and execute them on the…
Was CISOs über OpenClaw wissen sollten

Feb 16, 2026 9:58 PM

Tags: ai, api, authentication, browser, bug, chrome, ciso, cloud, crypto, cyberattack, ddos, DSGVO, firewall, gartner, github, intelligence, Internet, jobs, linkedin, LLM, malware, marketplace, mfa, open-source, risk, security-incident, skills, software, threat, tool, update, vulnerability

Lesen Sie, welches Sicherheitsrisiko die Verwendung von OpenClaw in Unternehmen mit sich bringt.Das neue Tool zur Orchestrierung persönlicher KI-Agenten namens OpenClaw früher Clawdbot, dann Moltbot genannt erfreut sich aktuell großer Beliebtheit. Die Open-Source-Software kann eigenständig und geräteübergreifend arbeiten, mit Online-Diensten interagieren und Workflows auslösen kein Wunder, dass das Github-Repo in den vergangenen Wochen Millionen von…
DPRK Operatives Impersonate Professionals on LinkedIn to Infiltrate Companies

Feb 10, 2026 7:13 PM

Tags: email, identity, korea, linkedin, technology

The information technology (IT) workers associated with the Democratic People’s Republic of Korea (DPRK) are now applying to remote positions using real LinkedIn accounts of individuals they’re impersonating, marking a new escalation of the fraudulent scheme.”These profiles often have verified workplace emails and identity badges, which DPRK operatives hope will make their fraudulent First seen…
DPRK IT Workers Use Stolen LinkedIn Identities to Secure Remote Employment

Feb 10, 2026 7:13 AM

Tags: ai, breach, cyber, fraud, identity, jobs, linkedin, north-korea

A new wave of identity fraud has hit the remote job market, with North Korean (DPRK) operatives adopting a sophisticated new tactic to bypass hiring screens. This development marks a significant shift in tradecraft. Previously, these operatives often relied on fabricated profiles with AI-generated headshots and fake resumes. However, hiring managers and security teams have…
LinkedIn als Einfallstor: Neue Angriffskampagne zielt auf Führungskräfte

Feb 9, 2026 12:13 PM

Tags: cyberattack, linkedin

Der Angriff folgt dabei einem klaren Muster. Am Anfang steht immer der Kontakt über den LinkedIn-Chat. Die Nachricht enthält einen Download-Link zu einem selbstentpackenden WinRAR-Archiv (SFX). Die darin enthaltenen Dateien sind auffällig gut auf Rolle und Branche des jeweiligen Opfers zugeschnitten First seen on infopoint-security.de Jump to article: www.infopoint-security.de/linkedin-als-einfallstor-neue-angriffskampagne-zielt-auf-fuehrungskraefte/a43637/