|
|
|
|
|
|
by pacavaca
1355 days ago
|
|
|
Funny enough, those emails caught my attention too and I was even trying to `curl -v` my way through the redirect chain before stumbling upon this thread. Weirdly, in my case the links in the email were pointing at lnkd.in/<some payload>, which is a legit Linked in domain. However, with that payload it was 301-me to some garbage script on google storage and then some shady website.
I'm curious how did they make lnkd.in respond with 301 to whatever they want and can't there be a vulnerability of some sort. |
|
|