DIGITAL LIFE

Over 6 million "disguised" attacks on employment platforms. LinkedIn is one of the most affected

As the search for new job opportunities continues to become increasingly digital, the website mundophone reports a significant increase in threats that exploit the vulnerabilities of those seeking a new job, including on popular platforms like LinkedIn.

Job searches are increasingly digital, but this transition has been accompanied by a worrying increase in cybersecurity risks. According to Kaspersky, between the second half of 2024 and the first half of 2025, more than 6 million attacks disguised as job tools and platforms were recorded, exploiting the urgency and vulnerability of those seeking new opportunities. Popular services such as LinkedIn, Indeed, Glassdoor, and Fiverr have been used for phishing campaigns, malware dissemination, and personal data theft, with LinkedIn recording more than 650,000 attempts to access fake pages.

Remote work and the growth of freelancing have boosted both digital recruitment platforms and associated malicious schemes. Many attacks mimic legitimate offers, encouraging the download of malicious files or the entry of credentials on fraudulent pages. In some cases, attackers even send fake software updates, such as Zoom, to install malware, taking advantage of poorly protected personal devices.

Between the second half of 2024 and the first half of 2025, more than 6 million attacks disguised as job tools and employment platforms were detected, according to data from the cybersecurity firm.

Experts say that platforms such as LinkedIn, Indeed, Glassdoor, and Fiverr have been used as "bait" for phishing attacks, malware, or personal data theft. On LinkedIn alone, more than 650,000 attempts to access phishing pages imitating the platform were identified.

Quoted in a statement, Evgeny Kuskov, a security expert at Kaspersky, warns that "when a person is actively looking for work, they tend to react more quickly to urgent messages, promising offers, or unexpected opportunities." "This is exactly the type of behavior that cybercriminals exploit with social engineering attacks," he emphasizes.

Many of the phishing pages analyzed by the experts imitated legitimate job offers, prompting users to download malicious files, submit sensitive information, or log in to fake pages.

In some cases, attackers simulated software updates like Zoom, sent via email, with the aim of installing malware on victims' devices. In other situations, cybercriminals exploited security flaws in personal devices used for job hunting, often without adequate protection or a separation between personal and professional environments.

If you are looking for a job online, the cybersecurity company recommends that you always verify the sender of emails and avoid clicking on links or attachments from unknown sources. It's also important to confirm the legitimacy of job postings directly on the companies' official websites.

Experts also recommend not reusing passwords across online job platforms, opting instead for password managers, and installing software only from official sources, keeping your system updated and protected with a security solution.

mundophone

----------------------------------------------------------------------------------------------------------------------------

F1 25 - Electronic Arts-Plataform: PlayStation 5--https://amzn.to/3V3mh1K

DROP PC38X Gaming Headset – Open-Back Over-Ear Design with Noise-Cancelling Mic, Velour Earpads – Compatible with PC, PS5, PS4, Xbox, Switch, Mobile – Black: https://amzn.to/3JAQkeE

XuanPad [Electric Focus] 4K 1080P Mini Projector Compatible with Android TV, Portable Projector with WiFi 6 and Bluetooth, 180° Rotation Outdoor Movie Projector for Phone: https://amzn.to/3Ji9fuY

ecobee Premium Smart Thermostat with Smart Sensor and Air Quality Monitor - Programmable Wi-Fi Thermostat - Works with Siri, Alexa, Google Assistant: https://amzn.to/46Yszae