Fraud Alert: Fake eMail from Indeed

An email including an HTML attachment is part of a phishing campaign to steal Indeed users’ account credentials.

The fraudulent message uses Indeed’s branding and includes a footer containing Indeed’s actual physical address and links. The message uses a spoofing technique to make the email look as though it comes from [email protected], one of the company’s official email addresses.

The email asks the recipient to confirm their email address on Indeed by opening an HTML attachment to confirm their email address. The HTML attachment, named “Indeed_Update_File.html,” goes directly to a fake login page.

Do not download or open the attachment! If you are in doubt about your account with any company or organization doing business online, go directly to that company’s website. Do not rely on links found in email messages. Entering your details into a fake log-in page is just one way that hackers can steal your identity.

Hackers steal their victims’ identities and then conduct fraud by opening new lines of credit or applying for new banking accounts. Attacks become even deadlier if their victims have used their Indeed credentials across multiple web accounts, allowing other accounts to be attacked.