Job Scams - Coca-Cola and Ferrari Offers Are Traps
Basically, fake job offers from Coca-Cola and Ferrari are tricking people into giving away their passwords.
Scammers are impersonating Coca-Cola and Ferrari with fake job offers to steal your passwords. Job seekers are at high risk as these scams become more sophisticated. Protect your personal information by verifying job offers directly with companies.
What Happened
As job seekers face increasing competition, sophisticated phishing campaigns are on the rise. Scammers are impersonating major brands like Coca-Cola and Ferrari, creating fake job offers that lure victims into revealing their credentials. These scams exploit the desperation of job seekers in a challenging labor market.
The Coca-Cola Scam
The Coca-Cola scam begins with a link to a seemingly legitimate scheduling page for a recruiter named "Tricia Guyer." Victims are asked to provide personal details and then prompted to log in using their Google accounts. However, instead of a genuine Google login page, victims encounter a simulated browser window that captures their credentials. This attack is particularly dangerous because it can bypass two-factor authentication by dynamically serving prompts based on the attacker's backend responses.
The Ferrari Scam
Similarly, the Ferrari phishing campaign presents itself as an official career portal. Victims receive a pop-up claiming they've been invited to apply for a marketing role. Whether they choose to log in via Facebook or enter their email, they are redirected to a fake login page designed to harvest their credentials. This scam targets a broader audience, aiming to compromise Facebook accounts that can lead to further social engineering attacks.
Who's Being Targeted
Both scams primarily target job seekers, particularly in a labor market where layoffs have surged. With over 1.17 million layoffs in 2025, the scams exploit the heightened anxiety and urgency among individuals seeking employment. The FTC reported a significant rise in job and employment scams, with losses escalating from $90 million in 2020 to over $501 million in 2024.
Signs of Infection
Victims may notice unusual requests for personal information or unexpected scheduling links from unknown recruiters. The fake browser windows can be particularly deceptive, making it hard for individuals to identify the scam.
How to Protect Yourself
To safeguard against these scams, consider the following:
- Be suspicious of unsolicited job offers, especially if you didn’t apply.
- Verify the recruiter and position by checking the company’s official careers page.
- Learn to spot fake browser windows:
- Try dragging the pop-up; a real one moves freely, while a fake gets stuck.
- Minimize your browser; a real pop-up remains visible, while a fake disappears.
- Inspect the URL bar; if it looks incorrect, it’s likely a scam.
By staying vigilant and informed, you can protect yourself from falling victim to these increasingly sophisticated phishing schemes.