Scam: Watch out for this new email scam that could rip you off!

Arnaque

Web scams are on the rise. Hackers have started another campaign data recovery. This is what happens at Pôle Emploi. On September 2, a company specializing in cybercrime talks about Vade questionable practice. Documents sent to the Pôle Emploi application site have revealed a phishing network since August. Zoom in on the situation.

An almost undetectable scheme

This time hackers used more complex means to reach their end. They are now using the Pôle emploi platform for their scams.

They don’t do not attack small fish as a careless worker. Instead, they go after recruiters. For this, the criminal creates an ordinary job-seeking profile. He sees the offer and contacts the employer who will be his next victim.

To apply to Pôle Emploi, you will obviously need an applicant’s CV and cover letter. Enough make the oppressors happy. Sending attachments is a favor for computer system intrusion.

The service offer procedure requires the recruitment of the Pôle send a message to the employerr, after this proposition. According to Vade, the first message will come from the Pôle emploi website and will be risk-free.

However, hackers take this opportunity to send another message to the recruiter. He says several candidates have applied. It encourages the professional to connect to the authentication page from the additional link. Of course, all this is just a trap.

The message in question is:

” Hello. Following your offer published today on the post-employment site, we are offering you several profiles that match your search. So make sure you include a link in your resume that will allow you to view these profiles…”.

Source: Pexels

you notice the spelling mistake on “extra”.

As a victim clicked on the link the parade may begin at the mall. This actually leads to Google Docs. The victim believes Join the Pôle emploi website. But it actually provides its credentials directly to the scammers.

Hackers to perfect scams even send the authentication code to the employer. With these methods, recruiters never suspect for a second that they are a victim of phishing. And yet…

More than 4,000 letters have been sent since August

Vade confirms this 4000 malicious emails sent as part of these scams since August 2nd. They add that on September 1 alone, there are 200 messages of the same genre. To this day, it is still difficult to identify all victim employers from this experience.

For example, a company specializing in cybercrime has found leads technical task targeted by hackers. However, fraudsters welcome the diversity of recruitment profiles with open arms. They intercept all offensive offers.

Why so much effort get a credential ? Vade’s cybercrime expert Antoine Morel answers:

“The criminal first recovers the email address and password. He can log into the company’s Pôle emploi account and search for valuable information about either the company itself or the candidates who have sent their CVs. These files contain a lot of personal information, so it can be used to target the victim, trick them, or tell them about their past, passions, etc. It will be easier to blackmail them when we know a lot about them. »

But that’s not all. Thanks to these identifiers, “hackers can also turn against the company with these identifiers in their hands and prepare an attack carefully in several stages”, the expert emphasizes.

Source: Pexels

How to protect yourself from these scams at Pôle emploi?

Numerama contacted Pôle emploi this scam to their audience. The institution claimed that this experience is not alien to them. The latter will now be the subject of “close monitoring to identify and block such attempts.”

For some time now, Pôle emploi has created a system to detect neutralize the wrong appsetc. Communication with targeted employers is also established, but not only. An “educational campaign” is being conducted for all users of the site. advice sheets is even given With the participation of Cybermalveillance.gouv.fr.

Despite this, this scam campaign continues. Faced with this, Numerama advises to enter your IDs only from the official site. Instead of clicking on a link embedded in an email, enter the site’s address directly into the search bar. This applies to all phishing emails. »

Leave a Comment

Your email address will not be published.