Since starting my first full-time software engineering job, I have received an influx of LinkedIn messages from recruiters claiming I am a good match for a company they are working with. Responding to their requests for a resume will often lead to the end of the communication. This got me thinking about all the personal identifying information contained in my resume that I was sending out to accounts who claimed to be working for various companies. The pages look legitimate, but only because of the high number of connections from accounts claiming to be from the same organization and posts with a high number of engagements. This all comes together to create an ideal situation for phishing via a botnet. To examine the feasibility of this type of operation I decided to create my own LinkedIn bot. Currently, given a valid email and password, my bot can login, add connections based on search parameters and message connections. You can view the project here https://github.com/betcherj/Scrapey.