Chinese intelligence services are actively exploiting professional networking sites like LinkedIn to conduct espionage operations against Western targets, according to a joint security advisory issued by the FBI, the U.K.'s MI5, and the governments of Australia, Canada, and New Zealand. The operatives create fake profiles posing as recruiters and human resources representatives for companies purportedly based outside China, then use these personas to identify and approach potential intelligence sources.

The advisory highlights a shift in focus beyond traditional cyber intrusion methods. While Chinese state actors continue to rely heavily on hacking operations, this campaign demonstrates their parallel investment in human intelligence gathering through open platforms. The approach allows operatives to build relationships over extended periods, gradually cultivating trust with targets before attempting to extract sensitive information.

The primary targets include individuals holding security clearances, active military personnel (particularly those stationed in the Indo-Pacific region), defense contractors, journalists covering national security topics, academic researchers, and employees of policy think tanks. Selection criteria focus on resume details that suggest access to classified or non-public information. The advisory notes that even unclassified information holds intelligence value when aggregated with other data points to inform Beijing's strategic and tactical decision-making processes.

The joint statement from the Five Eyes intelligence alliance (comprising the United States, United Kingdom, Australia, Canada, and New Zealand) emphasizes that China's military intelligence services seek to acquire privileged military, political, and economic intelligence. This information gathering aims to provide China with strategic advantages over the alliance members. The timing of the advisory reflects ongoing concerns about Chinese espionage activities, even as diplomatic relations between Western governments and Beijing show signs of improvement.

LinkedIn responded to the advisory by reaffirming its policies against fake accounts and identity misrepresentation. A company spokesperson stated that the platform remains focused on detecting state-sponsored abuse and will continue enforcing its terms of service. Security professionals and individuals in sensitive positions should exercise caution when engaging with unsolicited recruitment approaches on professional networking platforms, verify the legitimacy of companies and recruiters before sharing professional details, and report suspicious contact attempts to their security teams or relevant authorities.

Source: https://techcrunch.com/2026/06/04/chinese-spies-are-using-linkedin-to-lure-westerners-into-sharing-sensitive-information/