Table of Contents
Introduction: Understanding the Scam
Recently, an alarming trend has emerged where scammers are impersonating Coalition Technologies to offer fraudulent job opportunities. These scams typically occur via LinkedIn, emails from deceptive domains resembling (but not matching) “@coalitiontechnologies.com,” or through the messaging app, Telegram. The scammers often misuse our logo, branding, and even employee names to appear legitimate. This blog post aims to educate applicants on how to recognize these scams and take appropriate action.
It is important that people who believe they are being scammed report the profiles and methods used in the scams to firstname.lastname@example.org, and to the 3rd party companies implicit in the scams (LinkedIn, Telegram, website hosts, etc). We’ve seen LinkedIn and Telegram be exceptionally slow to take action to protect their users, reflecting an alarming lack of care for their audience. The more reports sent to them, the more likely they are to take action.
Recognizing the Scam
- Email Domain Check: Legitimate communication from Coalition Technologies will only come from email addresses ending in “@coalitiontechnologies.com” or via “testedrecruits.com”. Be wary of any variation in these domains. Tested Recruits is Coalition’s recruiting platform, and may send requests for skills tests and other application related activities. Emails coming from our recruiting team will use @coalitiontechnologies.com and will typically point you to the Tested Recruits platform for application related activity.
- Unofficial Communication Channels: If you’re contacted via Telegram, LinkedIn, WhatsApp or other unofficial platforms, be suspicious. On some occasions, our recruiting team may direct candidates to testedrecruits.com from LinkedIn, but that is it.
- Unusual Requests: Be cautious if you are asked for personal information or to perform tasks that seem unrelated to a standard job application process.
Verifying a Potential Scam
- Domain Verification: Use tools like WhoIs to verify the authenticity of the website or email domain. Check if the domain closely resembles but does not exactly match “coalitiontechnologies.com”. At the end of this article, we’ve provided more instructions on how to do that.
- Contact Coalition Directly: If in doubt, reach out to us directly at email@example.com for verification.
Reporting the Scam
- Email Scams:
- Gmail: Report the scam by clicking the three-dot menu next to the reply button in the email and select “Report phishing”.
- Yahoo: Click the “Spam” button and then “Report a Phishing Scam”.
- Hotmail: Choose “Junk” > “Phishing scam” to report.
- Domain Abuse:
- Use WhoIs to find the hosting company or domain registrar.
- Email the abuse contact provided in the WhoIs information to report the fraudulent use.
- Report the user by accessing their profile, tapping on the three-dot menu, and selecting “Report”.
- Additionally, inform Telegram of the scam via their Scam channel.
- Report the scammer’s profile via the “Report/Block” option on their profile.
- Local Law Enforcement: Report the scam to your local law enforcement authorities.
- Coalition Technologies: Notify us at firstname.lastname@example.org with any details you have about the scam.
At Coalition Technologies, we take the security and wellbeing of potential applicants seriously. By staying vigilant and reporting suspicious activities, you can help us combat these fraudulent schemes. Remember, when in doubt, directly contact us for verification and never share personal information unless you are certain of the legitimacy of the request. Stay safe and informed!
Step-by-Step Guide to Find Abuse Contact Information on WhoIs
Step 1: Access a WhoIs Lookup Service
- Choose a WhoIs Lookup Service: There are several free WhoIs lookup services available online. Some popular ones include whois.net, whois.com, or ICANN’s Whois Lookup.
- Navigate to the Website: Open your web browser and go to the website of the chosen WhoIs lookup service.
Step 2: Enter the Domain Name
- Locate the Search Field: On the WhoIs lookup website, find the search bar usually prominently displayed on the homepage.
- Enter the Domain: Type in the domain name you want to check. For instance, if you received a suspicious email from “email@example.com“, you would enter “fakecoalition.com”.
Step 3: Conduct the WhoIs Search
- Search: Press the search button or hit enter to conduct the WhoIs lookup.
- Wait for Results: The service will process your request and display information about the domain.
Step 4: Review the WhoIs Results
- Examine the Results: Look through the information provided. It generally includes the registrant’s contact information, registration dates, last update, and the domain’s expiration date.
- Find the Abuse Contact: Look for a section labeled “Abuse Contact Email” or something similar. This is usually found under the “Registrar” section of the results.
Step 5: Note Down the Abuse Email
- Record the Email: Write down or copy the abuse contact email provided. This is the email you will use to report any fraudulent activity associated with the domain.
Step 6: Report the Abuse
- Compose an Email: Create a new email to the abuse contact.
- Include Details: In your email, include all relevant details of the scam or abuse you’re reporting – include the domain name, any communication you received, and why you believe it’s fraudulent or abusive.
- Send the Email: Once you’ve compiled all necessary information, send the email to the abuse contact.
- Be Precise: When reporting abuse, provide as much detail as possible to help the host or registrar take appropriate action.
- Follow Up: If necessary, follow up on your report after a few days to check if any action has been taken.