Fraudsters may use a practice called phishing to try to obtain sensitive data such as usernames, passwords, and credit card information. These fraudsters impersonate legitimate companies or people by sending emails, messages, or posting fraudulent links that attempt to direct you to false websites or infect your computer with malware. LinkedIn will never ask you for your password or ask you to download any programs.
Phishing emails
Important: LinkedIn has several email domains, which are determined by our email service provider (ESP). We can assure you that emails from linkedin_support@cs.linkedin.com, linkedin@e.linkedin.com, and linkedin@el.linkedin.com are not phishing emails.
Common indicators of a phishing message:
-
Messages containing bad spelling and grammar that aren't addressed to you personally.
-
Messages asking you to act immediately.
-
Messages asking you to open an attachment to install a software update.
Learn more about protecting yourself from fraudulent messages or what to do if you've already clicked on a bad link or attachment. Additionally, be cautious of third-party sites offering assistance with our products.
To report phishing emails you've received, please forward the suspicious email to phishing@linkedin.com.
If you receive a message on LinkedIn and believe it's a phishing attempt, you can report it.
- Click the
More icon. - Select Report/Block.
- Select It's spam or a scam and answer the questions that follow.
Once you complete the above steps, you will no longer see the message in your inbox. You'll also have the option to block or report the member.
Below are some examples of phishing emails:
Body:
Dear [user's name],
We are currently upgrading our server and a temporary limitations has been placed on your Linkedin account.
Please continue with the link below to update and remove the temporary hold on your Linkedin account and connect to professionals around the world.
Continue [phishing site URL]
We are sorry for the inconvenience
Regards,
- Linkedin
2023, LinkedIn Corporation.
Body:
Dear [recipient email address],
Your Account will be locked due to failure to re-verify and confirm ownership.
Kindly Click here [phishing site URL] to verify and get more secured to continue using our service.
Ignorance will lead to temporary suspension of your service provision,
NOTE: *This is a one time user verification carried out in purpose to provide a more secured platform and shut down robot or malicious users created in purpose of spamming and other fraudulent activities.*
Best Regards,
(C) 2023 LinkedIn Security. All rights reserved. NMLSR ID 399801
This automated mail was sent to [recipient email address]. Replies sent to this email address cannot be answered.
Body:
LinkedIn Security Alert
Hi LinkedIn User: [user's email address]
Your LinkedIn Account Profile Has an unverified Status On our Security System
Your linkedIn account needs to be verified Urgently to prevent Phising and protect You from Spam .
Failure To Verify Your Account [user's email address], Your Account Will Be Terminated As we have Strong Anti-Spam Policy.
Please See Our TOS
Protect Your Linked Account Profile Now
[phishing site URL]
Follow Instructions in Link To Secure Your LinkedIn Account
Protect Your LinkedIn Profile [phishing site URL]
You are receiving LinkedIn emails. Unsubscribe [phishing site URL]
This email was intended for Alec Lou. Learn why we included this [phishing site URL]. 2023, LinkedIn Corporation.1000 W Maude Ave. Sunnyvale, CA 94085, USA
Body:
Please confirm your email address to get full access to LinkedIn.
YOUR ACCOUNT WILL BE TERMINATED!!!.
Your LinkedIn account is recommended for upgrade by LinkedIn.
Confirm your email[phishing site URL]
You're receiving this email because you (or someone using this email) created an account on LinkedIn using this address.
Didn't sign up for LinkedIn? Close account
Phishing comments
Phishing messages or comments are sent from fake profiles or compromised accounts that attempt to trick users into taking unsafe actions. They can appear as direct messages to you or in comments to posts you make on the platform and typically encourage you to click malicious links or share sensitive information—like passwords or financial details—by mimicking real interactions or exploiting trust in the platform.
Common indicators of phishing messages or comments:
- Creating a sense of urgency
- Promoting fake offers such as giveaways or high‑value sales
- Impersonating brands or trusted organizations by using company logos
- Falsely communicating a policy violation
If you receive a comment on LinkedIn and believe it's a phishing attempt, you can report it.
- Click the
More icon. - Select Report Post.
- Select Fraud or scam.
Your report helps signal to us that something may be wrong and allows us to review the comment and take the appropriate action.
Below are some examples of phishing comments:
Your post has been flagged for non-compliance with LinkedIn policies. Please appeal promptly to avoid permanent account suspension. case 0123456
Your post does not comply with LinkedIn’s guidelines. To appeal this decision submit the required information to avoid permanent suspension.
Your account is suspended due to policy violations. Please provide your information to reactivate your account by clicking this link: https://linkedinrecoverynow123.site.
LinkedIn has also joined the DMARC organization with other industry leaders like Facebook, Google, and PayPal, with the goal of fighting phishing and spam. In accordance with DMARC standards, LinkedIn digitally signs all emails we send. This allows participating email providers to identify our legitimate emails and throw away the phishing and/or spam emails. While most major email providers such as Google, Yahoo!, Microsoft, and AOL adhere to DMARC standards, a number of providers haven't implemented it. Additionally, messages that come from LinkedIn will contain a security footer to help you verify if they're authentic.
We also work with many industry partners to identify websites and email campaigns that engage in phishing or spamming, so that we can remove them from the Internet. Sometimes we're able to do this within an hour of the email crossing our radar. These combined efforts should decrease the chances of you receiving a fraudulent LinkedIn phishing or spam email.