A LinkedIn inbox full of malware.

Inside that .zip is a fileless malware called “more_eggs” that can help hijack a targeted device.

...If the LinkedIn member’s job is listed as Senior Account Executive—International Freight the malicious zip file would be titled Senior Account Executive—International Freight position (note the “position” added to the end).

Upon opening the fake job offer, the victim unwittingly initiates the stealthy installation of the fileless backdoor, more_eggs.

Director of the Threat Response Unit (TRU) for eSentire, called the activity “particularly worrisome” given how the compromise attempts could pose a “formidable threat to businesses and business professionals.”.

Considering that employers don’t usually just offer you a job, you would think this campaign wouldn’t be too hard to avoid.

We don’t allow fraudulent activity anywhere on LinkedIn?