Skip to content
Search
  • There are no suggestions because the search field is empty.
Cancel
Get Started Now

    Security Awareness Training Blog

    Phishing Campaign Impersonates Google Careers Recruiters

    KnowBe4 Team | Oct 24, 2025

    iStock-1199040494-1A phishing campaign is impersonating Google Careers to target job seekers, according to researchers at Sublime Security.

    “The scam is simple,” the researchers write. “An adversary sends an ‘are you open to talk?’ message impersonating an outreach email from Google Careers. If the target clicks the link, they’re taken to a landing page designed to look like a Google Careers meeting scheduler. From there, they’re taken to the phishing page.

    “What makes this attack particularly interesting is that it is in active development. We have observed threat actors refining and adjusting their tactics and techniques over time, evolving to evade detection.”

    The phishing pages are designed to steal users’ Google account credentials, as well as their names, email addresses, and phone numbers. Most of the phishing emails are in English, but the researchers also found samples in Spanish, Swedish, and other languages.

    Sublime Security outlines the following red flags associated with this campaign:

    • “Brand impersonation: These messages impersonated Google Careers, but were delivered on non-Google Careers infrastructure.
    • Domain deception: Links to domain that mimics Google branding but is not a Google domain (ex: gteamcareers[.]com).
    • Newly registered domain: The sender and/or links within the message use domains that were registered within the past 30 days.
    • Suspicious sender domain: Misalignment between claimed sender identity (Google Careers) and actual sender domain (varied).
    • Response urgency: Job offers came with vague details, but required immediate action (scheduling a call).
    • Deceptive recruitment outreach: Follows typical job scam patterns with flattering language and limited specifics.”

    AI-powered security awareness training can give your employees a healthy sense of suspicion so they can recognize social engineering tactics. KnowBe4 empowers your workforce to make smarter security decisions every day. Over 70,000 organizations worldwide trust the KnowBe4 HRM+ platform to strengthen their security culture and reduce human risk.

    Sublime Security has the story.

     

    Return To KnowBe4 Security Blog

    Live Demo: Supercharge Your Anti-Phishing Defense with PhishER Plus

    Email alone is the highest cause of data breaches and 56% of all attacks bypass your legacy security filters! The upshot? Legacy email security layers let these digital time bombs slip into the inboxes of your users. Introducing PhishER Plus - the most powerful anti-phishing protection available in the world.

    PhishER-Plus

    To learn how we can make such a claim, get a product demonstration of the new PhishER add-on, PhishER Plus. In this live one-on-one demo we will show you how you can:

    • Block email threats that have bypassed all other email security filters or systems before they reach your users’ mailboxes with the Global Blocklist
    • Isolate malicious emails that already bypassed your mail filters through automated quarantine with Global PhishRIP
    • Crowdsource threat intelligence from 10+ million KnowBe4 trained users
    • Save time and budget by reducing the volume of remediation efforts handled by your SOC Team
    • Leverage the power of triple-validated threat intelligence to protect your organization from new attacks

    Request A Demo

    PS: Don't like to click on redirected buttons? Cut & Paste this link in your browser:

    https://www.knowbe4.com/products/phisher-plus-request-a-demo

    Topics: Social Engineering, Phishing, Human Risk Management

    KnowBe4 Team

    ABOUT KNOWBE4 TEAM

    The KnowBe4 Team delivers timely, expert-driven insights on cybersecurity trends, emerging threat intelligence, human risk best practices, compliance strategies and industry research to help organizations strengthen their human defense layer and stay informed, resilient, and secure.

    Read more from KnowBe4 »

    Subscribe to Our Blog


    Security Awareness Training
    Blog RSS Feed
    Gartner Magic Quadrant
    All Posts

    Posts by Tag

    See all

    Posts By Topic

    View All

    Get the latest insights, trends and security news. Subscribe to CyberheistNews.