Anatomy of Social Engineering on LinkedIn: Real-World Tactics & Protection

Anatomy of Social Engineering on LinkedIn

This message is an actual example of a social engineering attack. Names and profile links have been removed for privacy. The attacker posed as an attractive, highly educated engineer, using physical attraction as a lure before attempting to build rapport through perceived understanding. Whether human or AI, the attacker repeatedly used the target’s name to create a sense of familiarity. They also attempted to manipulate emotions by invoking shame–implying, “I feel disrespected” or “how could you ignore such a beautiful woman?”. This type of psychological manipulation is highly deceptive and should not be attempted by anyone, even security professionals. If you receive messages like this, the safest course of action is to ignore and avoid engaging with the sender.

Attacker First Attempt Day 1:  1:59 PM

I'm glad you accepted my link invitation, Target, I hope I didn't bother you.

Attacker 2^nd Attempt Day 2:  8:07 PM

Hello,Target

• Target sent the following message at 10:28 AM Day 3

Target Response 10:28 AM

Hello, how are you today? Never a bother I respond when I can.

Attacker 10:32 AM

I'm fine, thanks for asking. I'll be here whenever you need me, so there's no rush.

I can see that you have extensive experience and achievements in your field. Can I ask you some questions about your work?

Target  11:55 AM

Of course

• Attacker attempting to engage: 11:58 AM

Can you discuss a particularly challenging audit preparation or compliance project and how you successfully navigated it?

Target 12:02 PM

I am bouncing between meetings right now but I have some good examples for you  - but I don't have the time at the moment.

Attacker showing understanding to humanize and disarm

  12:04 PM

No worries at all! I understand how busy things can be. Whenever you have the time, feel free to share these samples and explore together. In the meantime, let me know if you need any help or have any quick questions.

Target 1:59 PM

Sounds good please tell me about what you do. What do you like about it?

Attackers cover story 2:04 PM

I am currently a limited partner focusing on AI and engineering investments, focusing on AI infrastructure, industrial automation, and applied AI solutions. I would like to explore more AI applications in infrastructure and engineering.

Attacker grows impatient because of non-response attempts to reengage 

 4:16 PM

Hello,Target

Target 8:03 PM

Hello

your job sounds fascinating

Attacker attempting to humanize 8:08 PM

Thank you. I like my job. I can explore different fields while working, which gives me more learning and growth. So I also like to communicate with elites in different fields to learn more experience. I am glad to establish contact with you.

Attacker trying to find common interest 8:11 PM

I saw in your profile that you live in Scottsdale. I have been there on a business trip and was impressed by the beautiful scenery of Troon North Golf Club. If I go there again next time, maybe we can play a round of golf.😊

Attacker trying to reengage 8:19 PM

Sorry, maybe you don't like golf? It's one of my hobbies😃

Attacker being friendly trying to communicate care 9:00 PM

Good night! Rest well and take care. 😊 If you need anything in the future, I'm here to help. Sweet dreams!

• Day 4

Attacker attempting to reengage again 9:03 AM

Good morning Target

Attacker wondering why they are not hearing back attempting to rengage  

10:44 AM

Hello,Target are you still here?

Target  12:39 PM

Yes

I’m still here was just doing my podcast this morning

Target playing their game 12:40 PM

I am a scratch golfer - I played in college. Busy days as a startup. i’d love to hear more about your AI working a lot of clients are very concerned about AI

Attacker attempting to reengage and humanize 12:46 PM

Target: Yes

Amazing! Podcasts are a great way to share ideas and connect with others. What is your podcast about? I'd love to hear more.

Attacker still trying to engage 12:50 PM

That's pretty impressive. Balancing the demands of being a scratch golfer is no easy feat. You're in luck. 🏌️‍♂️Artificial intelligence is an exciting field with endless possibilities, especially for startups looking to innovate or improve their business. Basically, you can improve the user experience by using AI to analyze and personalize data to gain actionable insights.

Attacker wondering why no response 2:13 PM

😊

Attacker trying to reengage 3:10 PM

Hello,Target

Attacker trying to shame “sensitive” American into a response 3:40 PM

Hi Target, I feel disrespected because you saw the message I sent. Can you tell me why?

Target playing the game waiting for them to set the hook 6:01 PM

I’m no disrespect was intended I looked at the message but got called away and didn’t have time to respond. I am very busy at the moment entering hour 11 of my workday that will wind up being 14rs. I just don’t really have time for long conversations in Linkedin.

Attacker response humanizing then trying to set the hook 6:05 PM

Sorry if I bothered you. Thank you for taking the time to reply to me even when you were busy. 😊

I rarely use Linkedin and usually use WhatsApp to keep in touch with family and friends. Do you use it?

Target has won 6:13 PM

No, I don't

Attacker trying to communicate on a more dangerous communication method

  6:16 PM

• 👏
• 👍
• 😊

Well, what apps do you usually use to keep in touch with family and friends?

By resisting the lure to switch apps, the target avoided a potential breach. For businesses, such attacks can threaten compliance with standards like NIST or PCI DSS. Dive deeper into these frameworks in our post, Introduction to Compliance Standards: NIST, PCI DSS, and SMBs