Last week here in the labs, we started to receive a small amount of email that caught my eye. Our Threatseeker network saw less than 40 of these messages on the same day. This number of messages was tiny, but there is a good reason for malware authors to send so few messages: it keeps their efforts under the radar, which may help them succeed in their ultimate goal.
The social engineering aspects of these messages are interesting. At first glance, the messages are almost believable. They are spoofed to look as though they came in from the LinkedIn support team. LinkedIn is another Web 2.0 site whose name is being used to try to gain the trust of the email recipient.
The screenshot below shows that the message looks as though it's a reply from LinkedIn support to a desperate user's request to import their contacts from LinkedIn.
More: http://securitylabs.websense.com/content/Blogs/3201.aspx
 | Thank you for being a valued part of the CNET community. As of December 1, 2020, the forums are in read-only format. In early 2021, CNET Forums will no longer be available. We are grateful for the participation and advice you have provided to one another over the years. Thanks, CNET Support |
General discussion
Websense -Low Volume Under-the-radar Malicious LinkedIn Spam
Discussion is locked
CNET Forums
Operating Systems
Software
Electronics & Gadgets
Hardware
Tablets & Mobile Devices
General Help
Roadshow Autos
Chowhound
Comic Vine
GameFAQs
GameSpot
Giant Bomb
TechRepublic