Home / Blog / Insights / Important Notice: Phishing Scam Alert
•
Important Notice: Phishing Scam Alert
Official Notice from Convverge
Social Engineering Phishing Scam Alert
We have recently been made aware of a sophisticated social engineering scam targeting job seekers using our company’s name. This scam involves fraudulent job offers, email communications, and phone interviews impersonating Convverge employees. The attackers are using domains such as “work-convverge.com,” “convverge.co,” and “jobs@recruitment-convverge.com.”
What is Social Engineering? Social engineering is a deceptive tactic used by attackers to manipulate individuals into divulging confidential information. This can include phishing emails, fraudulent phone calls, and fake websites that appear legitimate. The goal is to trick you into providing personal information, such as Social Insurance numbers, banking details, or login credentials.
How to Spot Social Engineering Scams:
- Unexpected Communication: Be wary of unsolicited job offers, especially if you did not apply for a position.
- Too Good to Be True: Scammers often promise high salaries or immediate job offers without a thorough interview process.
- Urgent Requests: Beware of messages that create a sense of urgency, pressuring you to act quickly without verifying the source.
- Suspicious Email Addresses: Check for slight misspellings or variations in email addresses that attempt to mimic legitimate domains.
- Verification Steps: Legitimate companies will never ask for personal information via email or phone without proper verification processes.
We want to emphasize that this phishing attack does not represent any kind of security breach on our side. All of our internal data and systems remain secure and uncompromised. This is an external social engineering scam targeting job seekers through LinkedIn, email, and other job platforms.
What You Need to Know:
- Verify Authenticity: Always verify the sender’s email address before responding to any job-related communication. Official Convverge emails will come from the domain @convverge.com.
- Do Not Share Personal Information: Convverge will never ask for personal information through unofficial domains or without proper verification. Be cautious of any email requesting personal details such as Social Insurance numbers, banking information, or other sensitive data.
- Avoid Clicking Suspicious Links: Do not click on links or download attachments from unknown or suspicious emails. Always check the URL of websites linked in emails to ensure they match the legitimate company’s web address.
Actions Taken:
- Awareness: We have issued warnings on our website and social media channels to alert potential victims.
- Communication: We have been in touch with those who have been affected and are providing guidance and resources.
- Domain Monitoring: We are actively monitoring and reporting fraudulent domains to ensure they are taken down promptly.
- Collaboration with Authorities: We are working with cybersecurity authorities to shut down the phishing scam.
If You Have Been Targeted:
- Report the Incident: Please report the phishing attempt to your email provider and relevant authorities, including the Canadian Anti-Fraud Centre (CAFC).
- Contact Us: Forward any suspicious emails to us for verification. We will investigate and take appropriate action.
- Stay Vigilant: Follow the guidelines provided by CAFC here to protect yourself from phishing scams and ensure your personal information remains secure.
Thank you for your understanding and cooperation. Our commitment to maintaining a secure and trustworthy environment for all our stakeholders remains our top priority.
Convverge