{"@attributes":{"version":"2.0"},"channel":{"title":"Peter Robinson","description":"Blockchain, Crosschain, DeFi, and lots more.\n","link":"https:\/\/drinkcoffee.github.io\/","pubDate":"Wed, 25 Feb 2026 02:33:00 +0000","lastBuildDate":"Wed, 25 Feb 2026 02:33:00 +0000","generator":"Jekyll v3.10.0","item":{"title":"How to detect Interview Scams","description":"<p>Hackers from North Korea and Russia send messages on Linkedin and other platforms requesting targets to interview for interesting well paying roles. The points below provides some thoughts on how to filter out attacks from genuine roles.<\/p>\n\n<ul>\n  <li>Used your personal laptop, and not your work laptop.<\/li>\n  <li>Used www.scamadviser.com to check all of the URLs that were sent. Even if it looks like a well known URL, check it. URLs can look right but contain special \u00e7\u0127ara\u00e7t\u00e8rs, and lead you to an attack website.<\/li>\n  <li>Linkedin profile:\n    <ul>\n      <li>When was the profile created? Next to \u201cMessages\u201d, click on \u201cMore\u201d, and then \u201cAbout this profile\u201d. It is a big Red Flag if \u201cJoined\u201d is only a small number of months.<\/li>\n      <li>Is the profile detailed? Is there a long work history, with details of projects. Does the work history match that of a recruiter? What education do they have?<\/li>\n      <li>What is in \u201cContact info\u201d? If this has information such as an email address, then it reduces the probability that it is a scam.<\/li>\n    <\/ul>\n  <\/li>\n  <li>Do a Google image search of the Linkedin profile picture and the background image. If there are no matches for the images, then it is a Red Flag.<\/li>\n  <li>Do a web search based on their Linkedin profile handle (the bit of the URL towards the end. For me is peter-robinson-98a0061).<\/li>\n  <li>Use PimEyes.com to do a facial geometry match. This is likely to yield the person\u2019s real name. Remember to use www.scamadviser.com before clicking on links from PimEyes\u2019 search results!<\/li>\n  <li>Do a search for the recruiter\u2019s whole name. If it doesn\u2019t come up with any matches, it is a Big Red Flag. Almost everyone has a digital footprint.<\/li>\n  <li>I could have looked at the recruitment company\u2019s website to see if they had an employee list or profile page, but didn\u2019t do this. Note: use www.scamadviser.com to check this website before going to it!<\/li>\n  <li>If the name search doesn\u2019t come up with anything, just do a search for the surname. This will give you an indication of which country the person could be from.<\/li>\n  <li>Any documents that you have to open: open them in Safari in Private Mode (assuming you usually use Google Chrome). This gives isolation between your normal web browsing and viewing this potential malware.<\/li>\n  <li>If the company has a bitbucket repo, and not a github repo, this is a huge Red Flag. The bitbucket repo likely contains malware that they want you to run on your laptop.<\/li>\n  <li>When looking at code in a repo, look at the commit history.Only having one commit is a Big Red Flag.<\/li>\n  <li>If the total package on offer was large, and there wasn\u2019t much push back or discussion about the large amount of $, it is a Big Red Flag.<\/li>\n  <li>If you really want to protect yourself, do all of this in a virtual machine.<\/li>\n<\/ul>\n\n","pubDate":"Sat, 01 Feb 2025 11:00:00 +0000","link":"https:\/\/drinkcoffee.github.io\/blog\/2025\/02\/interview-scams","guid":"https:\/\/drinkcoffee.github.io\/blog\/2025\/02\/interview-scams","category":["interviews","scams"]}}}