BE AWARE of this HUGE LinkedIn SCAM!!
There's a huge LinkedIn scam happening right now and it's insanely organized!!
On my LinkedIn page, I've been talking a lot about LinkedIn scams. But I've never seen such an organized scam yet in my life, and I wanted to raise awareness as fast as I could...
?
So a few weeks ago, I changed the country settings on my LinkedIn profile to Sunnyvale, CA. I got so many job offers via email and LinkedIn messages, and this is about those?
?
First, I got messages from people at "VeeAR Projects Inc."?and emails from the?veear[.]com domain.
They all started writing the letter by saying just "Greetings!" instead of my name. Which is a good indication that they don't know my name, or that this is a copy and paste process, or that it's automated.So when reading further, you can see there are so many spelling and grammatical errors. But since Arun has a literal date stamp on top of the mail, So I realized they're just copy pasting the text to me.
?
Because the domain from which I received the email and the domain provided in the email to respond to them are the same, I performed an analysis on that domain, which is veear[.]com.
?
I learned that veear[.]com is redirecting to veearprojects[.]com (which I later found out was also malicious) This method is usually used to impersonate the original domain. So when a person loads the fake domain, they are being redirected to the original domain. What the person sees is the original domain website, which is fully functional or maybe well known. So they’re under the impression they’re receiving mail from something real.
?
Then I learned that veear[.]com doesn’t have an SSL certificate. SSL is a digital certificate that verifies the identity of a website and encrypts information sent to the server using SSL technology. It’s like an electronic "passport." Most well-known legitimate businesses will never hesitate to invest in a long-term SSL certificate.
?
Further down the rabbit hole, I discovered that veear[.]com's mail servers are blacklisted. Most mail servers get blacklisted because of spam. Blocking mail servers allows other mail servers to check if an email from an IP address might have been flagged for spam in the past. That's why it's already in my spam folder, and...
Thanks to everyone who took the time to click the "report spam" button. You're a HERO!!
?
But sadly, none of the security vendors have flagged the domain as a malicious or bad domain yet. After finding out some IP resolutions, with those IPs having a history of really bad traffic like exe files targeting Windows OS and apk files targeting Android OS.
So basically they’re cooking malware?
领英推荐
Later, I replied to these emails including a link I created with an IP logger and a URL shortener. It gave me IPs for multiple locations in "America". Later, I assumed these people were using VPNs. Smart? Not for hackers!!
?
Then I went to do research on their LinkedIn page. I gasped when I saw that 39000 people were following this page, granting a high level of digital trust to this scam. I learned this happened because when people apply to jobs on LinkedIn, the features make them automatically follow the company for future updates and they are constantly posting jobs!!
The company's LinkedIn page looks like this...
Something grabbed my eye again. They have 94 employees currently, and 100% of them are recruiters!!!
Some profiles I visited had 99+ endorsements!!
I'm not sure what their motive is because they haven't gotten back to me yet. But everyone has a phone number from the USA, and their profiles have apparently been on LinkedIn for a few years. As of now, I cannot do anything but raise awareness.
??
All I can still tell you how to look out for such scams...?
I don't understand how somebody can seriously play with someone's struggle to survive. Finally, I would like to leave a great quote by a great man...
"Rather fail with honor than succeed by fraud"
If you happen to find one NEVER just?block?them,?report?them to LinkedIn ??
FRONT END DEVELOPER | REACT-JS | | JS NATIVE | REST | 100+ WPM |GAME DEV | GAME DESIGN | SIMULATION TOOL DEV
1 个月Hey, thank you I just received the same email by Jyoti or something and it sounded scam so thankfully I researched as something felt wrong although this scam is pretty well thought out so anyone without a lot of know how will probably fall right into this. 2 years on this scam is still working
Geoscientist | Firefighter | Data Science Expert
2 个月This is a great article, thank you! I’ve had a message on LinkedIn & it may have been a mistake to pass them my WhatsApp details…
Administrative Professional
7 个月I was recently contacted by, Sergius Hanson on Linked-In, after viewing an out of state remote position for E-21 Construction. I was asked to send my resume to?[email protected]?. I was responded too respectfully with an interview request and provided with a list of interview questions to answer prior. The document was formal with company letter head. Mario called, He went through interview questioning, stated that a person named Renee would be contacting me. I received an email offer with contract, with a start date of April 29th, in which I signed and sent back. I messaged that I was excited to start etc. A Paul responded, my on boarding was not yet complete, my start date is May 6th. An email came through from Renee, formally asking me for my drivers license and ss card, that they would be putting me through a background check. I replied with the information. Next was my banking information to set up direct deposit. I replied with the information. Then comes the... I'll need your banking user name and password?.... I immediately called the number listed on the website. I spoke to a woman that stated that this was all a fraud and that they have been having an issue with others calling as well.
Unix/Linux Systems Administrator
8 个月Veear uses a different logo on Dice than on LinkedIn and neither matches the logo on veearprojects.com web page. Both the Dice and LinkedIn "company" pages point to the https://www.veear.com web path, which is sus. Glassdoor has mixed reviews. Some say "Great company" and some say "they don't pay you". Something weird is going on.