Attackers can use LinkedIn's short URL to masquerade their domain name and then send the shortened link to their targets.
Command and Control
None
Exfiltration
None
Download
Malicious tools can be stored on an attacker's domain and then have the URL shortened. When the tools are needed, the shortened URL is used to download the tools.