Asger Risom
When the job market is already tough, cybercriminals have found a new way to exploit people searching for work.
When the job market is already tough, cybercriminals have found a new way to exploit people searching for work. Security researchers are warning that fake job listings and malicious websites are on the rise, targeting those most in need of employment.
New digital traps
According to new findings from cybersecurity firm DNSFilter, nearly 8,724 malicious web domains containing the word “jobs” have recently been detected — with a striking 86% of them newly registered or observed. Another 1,161 domains featured the word “careers,” suggesting a coordinated effort to lure job seekers through fraudulent postings.
Gregg Jones, intelligence analyst lead at DNSFilter, told IT Brew that these scams have intensified due to “current world conditions.” With the US economy cooling and unemployment on the rise, those seeking work are more susceptible to deception.
The Bureau of Labor Statistics’ last available figures show a 4.3% unemployment rate in August, as job creation slowed sharply. Employers added just 22,000 positions that month — down dramatically from 142,000 a year earlier.
“The economy is not so great… people are struggling to find jobs, some people are struggling to keep jobs,” Jones said. “It’s that constant ebb and flow of ‘where’s the good sheep for the wolf to go attack?’”
Double-edged threat
Experts emphasize that the problem isn’t limited to job hunters. Employers and recruiters are also being caught in cybercriminals’ crosshairs.
In May, Arctic Wolf Labs reported a spearphishing operation by the hacking group Venom Spider, which sent malware-laced résumés to hiring managers. The goal: to infiltrate corporate networks under the guise of job applications.
Recruiters have also faced an uptick in fake IT worker profiles. Some bad actors now deploy deepfake technology to appear in video interviews, making fraudulent candidates even harder to detect.
Staying one step ahead
DNSFilter urges job seekers to scrutinize domain names carefully before clicking on listings. Websites with excessive hyphens, unusual extensions, or unfamiliar branding should raise red flags.
Jones also warned against rushing into offers that seem unusually generous or urgent. “If a job offer looks too good to be true, it probably is,” he said. He advised that individuals verify suspicious messages directly with hiring managers or company representatives. “No one should ever chastise you for being extra careful.”
Sources: IT Brew, DNSFilter, Arctic Wolf Labs, Bureau of Labor Statistics.
This article is made and published by Asger Risom, who may have used AI in the preparation
