Got a LinkedIn message from a recruiter? It might be Chinese intelligence, warn FBI and MI5
Graham CluleyArchived Jun 06, 2026✓ Full text saved
If you've ever received an out-of-the-blue message via LinkedIn from a recruiter offering some well-paid consultancy work, intelligence agencies have a message for you: be very careful. Read more in my article on the Hot for Security blog.
Full text archived locally
✦ AI Summary· Claude Sonnet
INDUSTRY NEWS
2 min read
Got a LinkedIn message from a recruiter? It might be Chinese intelligence, warn FBI and MI5
Graham CLULEY
June 05, 2026
Promo
Protect all your devices, without slowing them down.
Free 30-day trial
If you've ever received an out-of-the-blue message via LinkedIn from a recruiter offering some well-paid consultancy work, intelligence agencies have a message for you: be very careful.
A joint bulletin published earlier this week by the FBI, MI5, Australia's ASIO, Canada's CSIS, and New Zealand's NZSIS has warned that China's military intelligence services are actively using professional networking sites and online job platforms to recruit Western workers into handing over sensitive information.
According to the bulletin, entitled "Safeguarding Our Secrets", Chinese intelligence officers - or third parties acting on their behalf - are posing as employees of private consultancies, think tanks, and HR firms.
These fake "cover companies" reportedly pretend that they are based outside China in order to give them an air of legitimacy, and are said to be mostly targeting people whose career has ever touched government, defence, or foreign policy.
The bulletin describes the different stages of the operation.
Firstly, adverts for jobs are posted on platforms including LinkedIn, Indeed, and Upwork, and CVs of respondents are ranked based upon the likelihood that the applicant may have access to sensitive information.
Online interviews follow, during which recruiters conceal their true identity and probe job applicants about any government contacts they might have. Military applicants, meanwhile, may be asked about their roles, unit activities, home base, or even the naval vessel they serve upon.
Successful candidates are then asked to write a trial report on a seemingly innocuous topic. According to the advisory, topics include China's bilateral relations, the Indo-Pacific region and related defence issues, and international trade.
With a working relationship established, recruits are told that further work will require more privileged material, and the conversation shifts to an encrypted messaging app.
Job seekers may be pleased to learn that they will paid anywhere between a few hundred and several thousand dollars per report - with payments made via platforms such as PayPal, Payoneer, Zelle, Skrill, Wise, Western Union, or digital cryptocurrency.
According to the intelligence agencies, targets do not need security clearances to be of use to Chinese spies. Even unclassified information on government policy, military strategy, or capabilities can be combined with more sensitive material to form what the agencies call "a comprehensive operational picture."
Potential targets, according to the bulletin, include academics, journalists, freelance writers, and think tank employees.
Even if you were to apply for a job and go no further, there are said to be risks. Western agencies warn that just submitting a CV containing your employer history, specialist knowledge, and details of professional contacts has am intelligence value.
The Five Eyes intelligence agencies behind the publication of the advisory say that they have already identified individuals who have undertaken activities for China, and that they face potential criminal prosecution, the loss of their jobs, and revocation of security clearances.
Potential targets are urged to treat unsolicited approaches with scepticism, particularly if a job opportunity appears peculiarly well-targeted to your specific background, or if the online conversation is moved quickly to an encrypted messaging app.
China has predictably rejected the bulletin, describing its allegations as "entirely fabricated" and "malicious slander," before describing Five Eyes members as being the real threat to international stability.
TAGS
industry news
AUTHOR
Graham CLULEY
Graham Cluley is an award-winning security blogger, researcher and public speaker. He has been working in the computer security industry since the early 1990s.
View all posts
RIGHT NOW
TOP POSTS
SCAM
HOW TO
Scammer phone number lookup. How to check if a phone number is a scam
April 19, 2024
INDUSTRY NEWS
How any Instagram account could be hacked in less than 10 minutes
July 15, 2019
SCAM
DIGITAL PRIVACY
HOW TO
How scammers gain access and hack your WhatsApp account and what you can do to protect yourself
May 01, 2024
INDUSTRY NEWS
DATA BREACH
Rockstar Games confirms breach after ShinyHunters leaks stolen analytics data
April 14, 2026
FOLLOW US ON
SOCIAL MEDIA
YOU MIGHT ALSO LIKE
INDUSTRY NEWS
Europol cracks down on illegal streaming globally
Filip TRUȚĂ
June 05, 2026
INDUSTRY NEWS
Alabama Man Pleads Guilty to Stealing Private Photos to Extort Hundreds of Teens
Filip TRUȚĂ
March 03, 2026
INDUSTRY NEWS
Hacker Accused of Stealing Women’s Private Snapchat Photos Pleads Guilty
Filip TRUȚĂ
February 09, 2026
BOOKMARKS
You have no bookmarks yet. Tap to read it later.