How to Spot Fake LinkedIn Sales Bots Before They Catch You Out

Monday morning, you open LinkedIn and there's a new connection request waiting. The profile looks professional enough - a headshot, a job title, a reasonable number of connections. They've already sent a message saying they came across your profile and think there could be a great opportunity to explore. It feels flattering. You accept. And that's usually where the trouble starts.

Fake accounts and automated bots have become a serious problem on LinkedIn. The platform's reputation for professional credibility is exactly what makes it attractive to scammers. People extend a level of trust to LinkedIn connections they wouldn't give a cold email or a Facebook request. That trust is being exploited. The FBI has described fraud on LinkedIn as a significant threat to users, and AI is making these fake profiles and messages harder to distinguish from the real thing.

The risk for a small professional services business is real. Staff who handle client relationships, business development, or procurement are the most likely targets. A convincing fake profile might be fishing for personal details, trying to get someone to click a malicious link, or running a longer con - building rapport over several weeks before making a move. Any of those outcomes can cause genuine harm to a business.

Learning to read the signs makes a real difference. Fake profiles tend to have thin histories - vague job descriptions, no recommendations, and a profile picture that looks slightly too polished or doesn't quite match the claimed background. Messages from bots are usually generic, with no reference to your actual work or anything specific to your industry. Legitimate people reaching out on LinkedIn will typically mention something real - a shared contact, a post you wrote, a sector they know you work in. If a message could have been sent to anyone, it probably was.

Watch for spelling and grammar inconsistencies, especially across a series of messages. Bots can be surprisingly fluent at first, but inconsistencies often appear once a conversation develops. Be especially cautious of anyone who moves quickly to promoting a product, an investment, or an opportunity that sounds too clean. Real professionals build relationships before they pitch anything. Understanding the ways hackers get into business accounts can help you and your team stay one step ahead.

The most useful thing you can do for your team is make this kind of awareness a normal part of how they work online. Cybersecurity training doesn't have to be a half-day seminar. A short, practical session on recognising social engineering and security awareness for NZ businesses can significantly reduce the chance of someone clicking the wrong link or handing over information they shouldn't. For businesses handling sensitive client data, that matters. You can read more about how we approach this at ITstuffed's cybersecurity services for NZ businesses.

If you want to know where your business currently stands on security awareness and IT risk, ITstuffed offers a free 15-minute IT Fit Check. Book one at itstuffed.co.nz/booking and we can talk through what's worth addressing first.