Hackers are impersonating recruitment agencies on LinkedIn in a bid to target companies with backdoor malware.
Researchers at Proofpoint found that the malware campaigns primarily targeted US companies in various industries including retail, entertainment, pharmacy, and others that commonly employ online payments, such as online shopping portals.
In a blog post, the firm said hackers establish a relationship with potential victims by abusing LinkedIn’s direct messaging service.
In follow-up emails, the actor pretends to be from a staffing company with an offer of employment. In many cases, the actor supports campaigns with fake websites that impersonate legitimate staffing companies.