Cybercriminals have launched yet another spam campaign, impersonating LinkedIn, in an attempt to trick its users into clicking on the malicious links found in the bogus “Invitation Notification” themed emails. Once they click on the links, users are automatically exposed to the client-side exploits served by the Black Hole Exploit Kit. We realize several of our clients use LinkedIn so we wanted to share this threat information. Click here to see more details, including a sample screen shot of the email.
While we do everything we can to protect our clients’ systems, the single biggest factor in preventing a malware infection on a PC is an individual’s behavior. Each one of us needs to be vigilant to avoid downloading and installing anything we do not understand or trust, no matter how tempting, from different sources. The LinkedIn threat is one of many major sites that they spoof, so always be cautious when clicking a link or opening an attachment. This article from PCWorld.com offers good suggestions for smart online behavior.