Phishing Scam On LinkedIn Targets Fintech Executives

Tech Radar’s Sead Fadilpašić reports that a recent phishing campaign uncovered by Push Security targets finance executives and other high-net-worth individuals through LinkedIn messages rather than traditional email.

The attackers impersonate representatives of a fictitious “Common Wealth” investment fund. They invite recipients to join their executive board.

The message includes a link that redirects through multiple verification layers, such as CAPTCHA and Cloudflare Turnstile, before presenting a fake Microsoft login page. This deceptive site captures both credentials and session cookies, allowing continued unauthorized access even after passwords are changed.

Push Security’s research indicates that this campaign represents a strategic shift in phishing tactics. Attackers are moving beyond email and seeking to exploit users’ implicit trust in professional and social networking platforms.

Researchers noted that the choice of LinkedIn is deliberate, targeting a space where executives are accustomed to investment outreach and professional invitations. The message’s tone and context are tailored to appeal to individuals with decision-making authority and access to financial systems.

According to Push Security’s Chief Product Officer Jacques Louw, about one-third of recent phishing attempts have originated outside email platforms, a sharp increase from earlier months.

This suggests attackers are adapting to tighter email security controls and more sophisticated spam filtering. The campaign demonstrates that phishing remains effective when conducted in trusted environments that blur the boundaries between personal and professional spheres.

Legal and compliance teams should consider expanding internal risk assessments and cybersecurity training to encompass social and professional platforms. Companies may need to update incident response protocols to address credential theft that occurs through non-email channels.

As communication patterns evolve, maintaining data integrity and executive account protection will depend on monitoring access risks wherever business interactions occur.