Before You Upload Your CV: The 5-Minute Scam Check for Remote Jobs
On this page
- Why this is getting worse (and it’s not in your head)
- The 5-minute Scam Check (do this before you share anything)
- 1) Confirm the job exists on the company’s real site
- 2) Verify the recruiter’s email domain (not just their name)
- 3) Check their “process” for one non-negotiable: real-time conversation
- 4) Look for urgency + secrecy patterns
- 5) Never move to Telegram/WhatsApp for hiring logistics
- 6) Treat “download this” as a security event
- 7) Ask one question that a scammer can’t answer cleanly
- The “Never Do This” list
- A safer way to apply at scale (without burning out)
- Step A — Split your workflow into “Verify” and “Tailor”
- Step B — Tailor quickly (without rewriting your life story)
- Where HyperApply fits (quietly, but practically)
- If you already got tricked (do this now)
- Quick checklist (copy/paste)
Before You Upload Your CV: The 5-Minute Scam Check for Remote Jobs
*Last updated: December 24, 2025*
If a “recruiter” asks you to move the conversation to WhatsApp/Telegram, run a Terminal command, or “pay to unlock tasks”… you’re not job hunting anymore — you’re being targeted.
The frustrating part is that fake listings don’t just waste time. Some are designed to steal money, identities, or even install malware during the “interview process.”
This post gives you a bookmark-worthy, 5-minute verification routine — and a safer way to apply at scale without going generic.
---
Why this is getting worse (and it’s not in your head)
Scams have become more polished:
- cloned career sites
- realistic recruiter profiles
- urgent “offer timelines”
- “assessment first, talk later” flows
And remote roles are a frequent target because they attract a high volume of applicants quickly.
---
The 5-minute Scam Check (do this before you share anything)
1) Confirm the job exists on the company’s real site
- Open a new tab.
- Type the company domain manually (don’t click their link).
- Navigate to Careers.
- Find the same job (same title/location/team).
If the role isn’t on the official careers page, treat it as high risk.
2) Verify the recruiter’s email domain (not just their name)
- A legit recruiter email should match the company domain (or a known recruiting firm’s domain).
- Watch for look-alikes: `company-careers.com`, `companyjobs.co`, extra hyphens, weird subdomains, etc.
3) Check their “process” for one non-negotiable: real-time conversation
Scammers love:
- text-only “interviews”
- “assessment first, talk later”
- “record a video / install this / run that”
Legit companies can do a short call, even if early screening is async.
4) Look for urgency + secrecy patterns
Red flags:
- “You must accept today”
- “Don’t tell anyone”
- “We can’t do video”
- “Send documents now to secure your slot”
5) Never move to Telegram/WhatsApp for hiring logistics
It’s not that real recruiters never use messaging apps — it’s that scammers almost always do.
If they push you there early, assume risk and step back.
6) Treat “download this” as a security event
Do not install anything to “complete the interview”:
- “camera/mic fix”
- “video update”
- “screening app”
- “assessment runner”
- anything that involves running commands
If you’re asked to run a script/command: stop.
7) Ask one question that a scammer can’t answer cleanly
Try:
- “Can you confirm the hiring manager’s name and team, and the job requisition ID from your ATS?”
- “Can you point me to the job on your official careers page (I’ll verify by navigating there myself)?”
Legit recruiters handle verification calmly. Scammers get vague, pushy, or disappear.
---
The “Never Do This” list
Never:
- pay for training, equipment, onboarding, or “registration”
- accept a check to “buy equipment” and send money back
- share passport / national ID / bank details before a signed offer and verified employer identity
- run Terminal/PowerShell commands from a website or a “recruiter”
- install “updates” to make an interview work
---
A safer way to apply at scale (without burning out)
Scams thrive when you’re exhausted. The goal is to move fast and stay safe.
Step A — Split your workflow into “Verify” and “Tailor”
1) Verify first (5 minutes) using the routine above
2) Only then invest time tailoring and applying
Step B — Tailor quickly (without rewriting your life story)
Once a listing passes verification:
- rewrite your summary to match the role (2–3 lines)
- select the 8–12 most relevant skills
- adjust 3–5 bullets to mirror the job requirements (truthfully)
If you want a practical step-by-step workflow:
And to avoid the common “stuff keywords everywhere” trap:
---
Where HyperApply fits (quietly, but practically)
If you want to:
- verify listings first (so you don’t waste time on scams),
- still apply broadly to reach real openings,
- and avoid sending the same generic CV everywhere…
HyperApply is built for the “Tailor fast after verification” step:
- You open the job listing you’re already viewing
- HyperApply generates a tailored CV PDF from your base CV + the job requirements
- You stay in control (review/edit/decide)
- It’s designed for individual job seekers — not auto-applying
Helpful links:
- How HyperApply works
- Data collection and processing
- FAQ: What data do you collect?
- HyperApply vs auto-apply tools
---
If you already got tricked (do this now)
If you shared sensitive info, clicked something sketchy, or ran a command:
- change passwords (email first), enable 2FA
- run a reputable malware scan
- contact your bank if money was involved
- report the scam to the platform where you found the listing
---
Quick checklist (copy/paste)
Before applying:
- [ ] Job exists on official careers page
- [ ] Recruiter email domain matches the real domain
- [ ] No Telegram/WhatsApp pressure
- [ ] No “install this” or “run this command”
- [ ] Process includes real-time conversation
- [ ] No payment, no check, no “task unlock” nonsense
- [ ] You’re tailoring only after verification