Fraudsters began to massively attack Russians under the guise of hiring

In June-May 2025, fraudsters used six new schemes against those looking for work, the Russian DLBI vulnerability and data leakage intelligence service told Izvestia.

Hundreds of thousands were stolen: scammers came up with a new scheme using work chats

They hack into Russian accounts and deceive their colleagues.

In particular, in May, a scheme with test tasks appeared and began to be actively used. The files sent by the attackers contained stealer malware that stole authorization data and passwords. They were then used to hack into mailboxes and messengers, and they were also sold on the black market.

"In June, fake online interviews appeared when the victim was sent to a fake Google Meet page, where she entered her Google authorization data and lost access to all resources where she was authorized through Google Oauth, primarily Gmail. In the same month, three new malware download schemes appeared. In one scheme aimed at IT specialists, it was necessary to compile a test task from the source. In another case, it was suggested to download it to a program that supposedly checks the computer," they said.

In all fraudulent schemes, links to fake jobs were distributed through Telegram channels dedicated to the job.

Read more in the exclusive Izvestia article:

Career outgrowth: scammers massively attack Russians looking for work