Sydney hospital loses $2 million in alleged BEC fraud
A Sydney hospital lost $2M in a BEC scam. Learn how to protect your business with MFA, email authentication, and robust financial controls.
Because LinkedIn is used as a professional networking platform, account holders don’t use the same caution as they would on Facebook or X (formerly Twitter). If it’s all hardworking professionals that are using the platform, they must all have good intentions, right?
Unfortunately, just like any other social media site, LinkedIn is filled with scammers and bad actors hoping to take advantage of the well-meaning people and businesses who use the platform. In fact, according to the NordLayer CEO, 52% of American businesses will come across a LinkedIn scam at least once.
So, while you might be eager to accept a connection request from someone who claims to be in your field, it’s worth exercising the same caution you would if a stranger sent a friend request on Facebook. Scammers are known to get crafty; in order to avoid falling into their traps, you have to be aware of the common LinkedIn scams and know how to avoid them.
In the same way that you might receive a phishing email at work, phishing scams on LinkedIn involve scammers sending a message that appears to be from a real business or individual. It could look like it’s coming from someone at LinkedIn who is concerned about your account, or it could look like a leader from a company reaching out.
Scammers will send links, asking you to click on them and fill out personal information. Once you click the link, you may be exposed to malware or another type of attack on your device. They could also send a link that redirects you to a page where you’re prompted to enter your LinkedIn login credentials, and once you do that, they’ll have untethered access to your account.
By taking advantage of people who are eager to make money quickly, cryptocurrency scams will promise big returns in short time periods. Scammers will convince their victims to provide their bank account information, send large sums of money for “cryptocurrency investment purposes,” and then disappear, leaving that person at a loss for their entire investment.
Pig-butchering scams are a growing type of cryptocurrency scam where the hacker attempts to “fatten up” the victim by created a rapport with them. Strangers will initiate connections and conversations, starting off slow, building an almost-friendship dynamic. Once they’ve gained the trust of the victim over weeks – sometimes months – they’ll recommend a fraudulent investment channel and convince the victim to invest massive amounts. Of course, it was all fake from the start.
LinkedIn isn’t just a place to connect with other individuals, it’s also a job posting site. Many companies use LinkedIn as a primary source of potential candidates for open roles. Although the platform can be an amazing tool to land your dream job, be weary of employment scams that are running rampant.
Usually, with this type of scam, scammers will reach out to you directly, touting a too-good-to-be-true job opportunity with high pay, flexible work, and more. In order to apply, you may give up sensitive information like your Social Security number or bank details. The scammer will then have multiple pathways to commit fraud or steal your information.
It’s not uncommon for bad actors to pose as IT experts looking to help you solve a problem with your LinkedIn account. They might claim that your account has experienced a breach or claim that payment for certain services is overdue. Once you take the bait, scammers have a direct path to your credentials.
In some tech support scams, the “IT expert” will tell you that you need to make a payment before they can secure your account or resolve your issue. Once you make the payment, the money will be gone, and almost certainly, so will the scammer.
Using phishing tactics or hacking, bad actors can take over your account and do a lot of damage in your professional circle. If they get access to your real account, they can use that access to steal your information, pose as you, and defraud other professionals in your network, or even execute elaborate financial schemes or other types of scams. This can be very detrimental to not only you, but also to your connections.
A Sydney hospital lost $2M in a BEC scam. Learn how to protect your business with MFA, email authentication, and robust financial controls.
CFOs, beware: cybercriminals are exploiting DocuSign’s legitimate business tools to deliver fraudulent invoices directly through trusted channels. This scheme is particularly dangerous …
Fraud is usually associated with deception, manipulation, and crime, but what many people don’t realize is that not all scams are illegal. …
Eftsure provides continuous control monitoring to protect your eft payments. Our multi-factor verification approach protects your organisation from financial loss due to cybercrime, fraud and error.