The Wells Fargo phish was sent to a fake Wells Fargo LinkedIn profile in his LinkedIn Messages. In the second, a potential mark received the same phish from the same fake LinkedIn profile but delivered to the external email address associated with his LinkedIn profile. In short, they had converted LinkedIn itself into a phishing platform. We are speculating that the bad guys used LinkedIn to identify potential Wells Fargo customers by looking for connections between LinkedIn users and the official Wells Fargo’s LinkedIn Business account or to Wells Fargo employees.”]
Source: https://blog.knowbe4.com/the-linkedin-phish-how-they-did-it