Back

Chinese Intelligence Uses Fake LinkedIn Profiles for Espionage Against UK

Severity: High (Score: 69.0)

Sources: Caliber.Az, www.thesun.ie, www.dailystar.co.uk

Published: 2026-06-02 · Updated: 2026-06-02

Keywords: using, chinese, spies, linkedin, fake, secrets, experts

Severity indicators: ot

Summary

Chinese intelligence services are reportedly employing fake LinkedIn profiles to target sensitive information from British officials and citizens. Security experts warn that these tactics, which include fake emails and gifts, pose a critical threat to both the UK and the US. Recent convictions of two men for spying for China highlight the severity of the situation. MI5 has indicated that over 200,000 UK nationals may have been approached by Chinese operatives online. The profiles of Amanda Qiu and Shirly Shen were identified as being used to recruit individuals with access to classified information. Experts suggest these accounts may have acted as 'honeypots' to extract confidential data. The ongoing espionage activities are believed to be part of China's broader strategy to assert its dominance on the global stage. Key Points: • Chinese spies are using fake LinkedIn profiles to target UK officials and citizens. • MI5 estimates over 200,000 UK nationals have been approached by Chinese intelligence online. • Recent convictions highlight the growing threat of espionage activities from China.

Detailed Analysis

**Impact** Over 200,000 UK nationals have reportedly been targeted by Chinese intelligence operatives using fake LinkedIn profiles. The primary targets include British officials, university students in engineering and IT disciplines, and individuals with access to classified or sensitive information. The espionage campaign threatens national security and intellectual property, particularly within government sectors and academia in the United Kingdom. **Technical Details** The attack vector involves fake LinkedIn profiles posing as recruiters or head-hunters, specifically under the names Amanda Qiu and Shirly Shen, featuring female headshots. Tactics include social engineering through fake emails, relationship cultivation, and the use of gifts to extract information. The profiles likely function as honeypots, employing seduction or romantic enticement to gain trust. No malware, CVEs, or specific infrastructure details were disclosed. **Recommended Response** Defenders should increase monitoring of unsolicited LinkedIn connection requests and emails, especially those from unknown recruiters or head-hunters. Security awareness training should emphasize recognizing social engineering and honeypot tactics. Organizations must enforce strict data access controls and encourage reporting of suspicious online interactions. No specific patches or technical mitigations were indicated in the reports.

Source articles (3)

  • China using fake LinkedIn profiles to target UK secrets, experts claim — Caliber.Az · 2026-06-02
    Chinese intelligence services are using relatively simple methods to attempt to obtain sensitive information from British officials and members of the public, according to claims by security experts.…
  • Chinese Spies Using Linkedin Honeypots 37229972 — www.dailystar.co.uk · 2026-06-02
    Chinese spies are using simple strategies to try and obtain secrets from British officials and even citizens, its claimed. The espionage methods include the use of fake emails, accounts and gifts, exp…
  • Chinese Spies Fake Emails Nasa Linkedin Teapot Gifts — www.thesun.ie · 2026-06-02

Timeline

  • 2026-06-01 — Two men convicted of spying for China: These individuals became the first in British history to be convicted for espionage related to a 'shadow policing operation'.
  • 2026-06-02 — MI5 warns public about Chinese espionage tactics: MI5 alerted UK citizens to be vigilant against unsolicited online approaches from suspected intelligence operatives.
  • 2026-06-02 — Experts identify fake LinkedIn profiles used in espionage: Profiles under the names Amanda Qiu and Shirly Shen were linked to recruitment efforts targeting individuals with access to classified information.

Related entities

  • Phishing (Attack Type)
  • Shadow Policing Operation (Campaign)
  • China (Country)
  • United Kingdom (Country)
  • United States (Country)
  • T1566 - Phishing (Mitre Attack)
  • LinkedIn (Company)
Loading threat details...

Threat Not Found

The threat cluster you're looking for doesn't exist or has been removed.

Return to Feed