Scammers Are Posing As LinkedIn Users.
If you receive a warning in a LinkedIn post that your account has been blocked, do not respond. Scammers use LinkedIn branding in comments that appear official to distribute phishing links designed to harvest user credentials.
As BleepingComputer reports , this impersonation campaign uses fake company pages and LinkedIn’s official link shortening service to trick users into “verifying” their identities on a domain controlled by the attackers. Here’s what to look out for.
How LinkedIn Reply and Comment Phishing Works
Scammers respond to LinkedIn messages, claiming that users have somehow violated the platform’s rules. The comments contain a link that users are urged to click to prevent further restrictions or suspension of their accounts.
In some cases, the link preview states, “We take steps to protect your account when we detect signs of potential unauthorized access. This may include logging in from unfamiliar locations or…,” which may dissuade users from following the link itself, which clearly doesn’t lead to a page with a valid LinkedIn domain. In other cases, scammers further disguise the phishing site by using LinkedIn’s official URL shortening service, lnkd.in , which is even less likely to arouse suspicion, especially if the link preview isn’t displayed on some devices.
Clicking the link will take you to a phishing page using LinkedIn branding and containing additional information about the supposed account restriction, as well as a “Verify Your Identity” button. This will lead to another page that closely mimics the standard LinkedIn login interface and is designed to steal your credentials.
The comments on the posts use the LinkedIn logo and branding, and the links lead to company pages with variations of the platform’s name—for example, “Linked Very.” At first glance, these are clearly fake, as they lack the full content (such as posts, employee information, or followers) one would expect from a genuine LinkedIn account. However, users are quite likely to click the phishing link without further investigation into the commenter.
Don’t respond to urgent comments on LinkedIn.
As always, any urgent message or comment regarding your account security or status, no matter how official it sounds, should be viewed with suspicion. A closer look at such responses makes it clear they are not from the real LinkedIn, which will not publicly report account or policy violations, nor will it encourage you to click links in comments or direct messages.