Notes RSS feed

Overview

This scam involves regisrered a domain to that looks very similar to a legitimate company’s domain.

The goals of this scam vary, but identify theft, phishing and malware are common. Other scam vectors could also include “Equipement Purchase Scam”, “Fake Cheque Scam” or more.

How to Spot this scam

This will usually be an email from a bad domain. The Domain will be very close to the legitimate company’s domain, but with a slight difference. For example, if the legitimate company is example.com, the scam domain might be examp1e.com or exampl3.com. Notice the number “1” instead of the letter “l” ? This is easily missed detail.

Another common tactic is to use a different top- level domain (TLD) than the legitimate company For example, if the legitimate company is example.com, the scam domain might be example.net or example.org.

How to check the domain.

For GMail, you need to examine the “From” address in the email header. Double check that the domain is correct and legitimate.

So, you can see that this email is supposedly from “Chris Brulak” but how do you know if this is the correct “Chris Brulak” ?

You need to ‘expand’ the sender. There is a small arrow near the addressee (the person who received the email). In thise case, it’s ‘notifications’.

Now, you can see where the actual domain the email origianted from. In this case it is “redpatchtechnologies.ca”. You can then copy that domain, visit the website and see if it is legitimate or not.

How to prevent this scam

This is very challenging as the scammers are able to harvest emails from a variety of sources and for the most part, email addresses are public information. The best way to avoid this scam is to be aware that it exists and to be vigilant when you receive an email from someone you don’t know.

Espically if you are actively seeking a new job and submitting your email to various job boards, etc.

1. Different email address just for job searching: One way of mitigating this scam is have a different email for your job search than you do for your personal use. This way, if you receive an email from someone you don’t know, at your job searching email address you will be more suspcious of any emails you receive and can take appropriate action. Another way to mitigate this scam is to only apply to jobs that are posted on the company’s website or through a legitimate job board.

2. if using gmail, utilize the + feature in your email address: For exmaple if your gmail is ‘[email protected]’ you can add “+jobs” to your address, like “[email protected]” and any emails sent to that address will still be delivered to your main email address. Then, if you receive an email from someone you don’t know at “yourfirstname+jobs@gmail. com”, you can be extra vigilant at the domain and verify that is legitimate before replying.

Overview

This scam involes getting an iMessage from some sort of random looking email address, usually from @hotmail or @outlook.com.

The message will be something along the lines of:

Hello, my name is Emily, recruiter at DSL, we came across your profile through several online recruitment platforms and were impressed by your background and experience, we’re currently offering a flexible part-time opportunity that you can work on in your free time. The role involves assisting TEMU merchants with product reviews. It’s a straightforward task, and we’ll provide free training to get you started. The daily salary ranges from $201 to $3000, and you can receive your commission immediately after the work is completed. All payments are made on the same day. If you would like to join us, please contact us via WhatsApp: +12894637554 (Please note that applicants must be at least 21 years old to be eligible for this role)

They will then redirect you to Whatsapp, Telegram, Signal or similar. This scam usually involes a fake job offer, and the scammers will try to get you to send them money to get started or buy equipement from their own portal with the promise of reimbursement. They will also promise re- imbursement for any expenses incurred and never send you any money back.

How to Spot this scam

There are some key, tell ta l signs that can help you spot this scam:

1. The email address is from a free email provider like @hotmail or @outlook.com. Scammers use these emails because anyone can sign up for no cost and almost no verification. Additionally, they will mass send, perhaps in 10s of thousands in a very short time before any automated detection systems shut them down.
2. The email address is not from the company that is being advertised for. For example, “DSL” will never use a @hotmail.com account for offial communications.
3. Redirect to another communcation platform with a phone number. “DSL” would also never ask you to communicate via What’s App, telegram etc. They would only use offical email accounts at the corporate email address.
4. Immediate or Same day Payment. This never happens in a corporate environemnt.
5. No witholding taxes. Every corporation in North America and Most of the EU is required to withhold taxes on any payments made to employees. Even to some contractors.
6. Too good to be true. If it seems too good to be true, it usually is.

How to prevent or protect yourself from this scam

Unfortunately, there isn’t much you can do to prevent receiveing theese messages. Fraudsters will get your contact info through a vareity of means. Some legit, some criminal. However, if you receive one of these text messages, the safest thing to do is delete it and block the number and of course, report it to us.

Examples