Emails purportedly coming from business-related social network LinkedIn have been hitting inboxes in the last couple of days, ostensibly reminding recipients of invitations they received: Unfortunately, the offered links take the users to a website hosting the BlackHole exploit kit, and if successful in taking advantage of existing vulnerabilities, it installs the well-known credential-stealing Cridex Trojan on the victims' machine.
Most social networks' users are hit by online scams almost daily - whether its the ubiquitous survey scam or the "share your cell phone number, get subscribed for a premium number service".
Facebook's regular introduction of on-by-default features often creates quite a stir when first introduced.
If the look of the message seems familiar, it is because the scammers have used the legitimate LinkedIn email template and modified it to suit their needs - i.e.
Ping Identity released Cloud Identity Connectors for LinkedIn, Twitter, and Microsoft Live, enabling the enterprise to rely on cloud service providers and social networking sites for third-party user authentication.
Reading our newsletter every Monday will keep you up-to-date with security news.
Receive a daily digest of the latest security news.