Fake Recruiters Defraud Facebook Users via Remote-Work Offers

Scammers are targeting multiple brands with job offers on Metas social media platform, that go as far as to offer what look like legitimate job contracts to victims.

A fresh wave of job scams is spreading
on Metas Facebook
platform that aims to lure users with offers for remote-home positions and ultimately defraud them by stealing their personal data and banking credentials.
Researchers from Qualys are warning of ongoing attacks against multiple brands offering remote work through Facebook ads that go so far as to send what look like legitimate work contracts to victims, according to
a blog post
published Jan. 10 by Jonathan Trull, Qualys CISO and senior vice president of solutions architecture.
The attackers dangle offers of work-at-home opportunities to lure Facebook users to install or move to a popular chat app with someone impersonating a legitimate recruiter to continue the conversation. Eventually, attackers ask for personal information and credentials that potentially can allow attackers to defraud them in the future.
Likely aiming to take advantage of peoples tendency to make resolutions in the new year, these fake job ads — a persistent online threat — typically see a rise in prevalence following the holidays when people are primed for new opportunities, Trull wrote.
The researchers discovered the scams because fake recruiters were purporting to be from Qualys with offers of remote work. The company, however, never posts its job listings on social media, only on its own website and reputable employment sites, Trull said.
The initial text lures for the scam occur in group chats that solicit users to move to private messaging with the scammer who posts the job opening. In several cases, the scammer appears to have compromised legitimate Facebook users and then targeted their direct connections, Trull wrote.
Once a victim installs Go Chat or Signal — the messaging apps used in the scam — attackers ask for additional details so they can receive and sign what appears to be an official Qualys job offer complete with logos, correct corporate addresses, and signature lines.
Attackers then ask victims to send a copy of a government-issued photo ID, both front and back, and told to digitally cash a check to buy software for a new computer that their new employer will ship to them.
Qualys has notified both
Facebook
and law enforcement of the scam and encourages users to do the same if they observe it on the platform. The blog post did not list the names of other companies or brands that might also be targeted in the attacks.
Job scams
are indeed a constant online security issue, one thats on the rise, according to the
US Better Business Bureau (BBB)
. Online ads and phishing campaigns are popular conduits for job scammers, which use social engineering to bait people into responding and then either steal their personal data, online credentials, and/or money. Scams also can have a negative
reputational impact
on the companies whose brands are used in the scam.
To avoid being scammed by a fake job listing, Qualys provided some best practices for online employment seekers to follow when using the Internet to search for opportunities.
In general, a mindset of if its too good to be true, it probably is is a good rule of thumb to approaching online job listings, Trull wrote. Listen to your intuition, he added. If it doesn’t feel right, you should probably not proceed.
Qualys also advised that people always verify offers by looking up a job opening on an organizations official website and contacting the company directly instead of using social media contacts that could be abused as part of a scam.
People also should be highly skeptical of any job solicitation that doesnt come from an official source, even if the social media source making the offer appears trusted. Since social media accounts can be
hijacked
, the source can appear legitimate but isnt.
Further, if an online recruiter asks a person to install an app to apply for a position, its probably a scam, Trull warned. Real recruiters will call you, email, or set up a multimedia interview call at their expense without any concern — they are set up for it if they are a recruiter, he wrote.

Last News
▸ ArcSight prepares for future at user conference post HP acquisition. ◂ Discovered: 07/01/2025 Category: security	▸ Samsung Epic 4G: First To Use Media Hub ◂ Discovered: 07/01/2025 Category: security	▸ Many third-party software fails security tests ◂ Discovered: 07/01/2025 Category: security

**Cyber Security Categories**
Google Dorks Database	Exploits Vulnerability	Exploit Shellcodes

CVE List

Tools/Apps

News/Aarticles

Phishing Database

Deepfake Detection

Trends/Statistics & Live Infos

Tags:
Fake Recruiters Defraud Facebook Users via Remote-Work Offers