Cyberint’s cyber analysts discovered a persistent and effective hacking effort aimed at LinkedIn accounts, which left victims without access and subject to ransom demands or account cancellation. Blackmail, data collection, social engineering, and reputational harm are all possible outcomes of compromised LinkedIn accounts. Instances of unauthorized access to or locking out of LinkedIn accounts have irked many users, and they have also had trouble getting these problems resolved through LinkedIn’s customer service.
In an effort to get control of a sizable number of LinkedIn accounts, the attackers appear to be using brute-force techniques or exploiting stolen login credentials.x000D Once the hackers have gained access to weakly protected LinkedIn accounts, they quickly alter the corresponding email address to one connected to the “rambler[.]ru” service.