Mar 12, 2019 05:11:14 AM Edited Mar 14, 2019 05:06:56 AM by Nicole H
Mar 12, 2019 04:54:48 PM by Scott B
At first I though the OP was using "malware" generically to describe scammy jobs, but I am getting the sense now that we are saying that there are links to malware within a posted job description? I admit I have never seen this so I want to clarify what people are seeing. If in fact there are malware links, UW definitely can detect these if they have the right software. This something they buy from the likes of say a Mimecast or others. This is not something you do in-house unless you just prevent any links from being entered.
Mar 12, 2019 04:59:46 PM Edited Mar 12, 2019 05:05:32 PM by John K
Scott B wrote:At first I though the OP was using "malware" generically to describe scammy jobs, but I am getting the sense now that we are saying that there are links to malware within a posted job description? I admit I have never seen this so I want to clarify what people are seeing. If in fact there are malware links, UW definitely can detect these if they have the right software. This something they buy from the likes of say a Mimecast or others. This is not something you do in-house unless you just prevent any links from being entered.
Scott, I presume Upwork routinely scans links within job posts, so I assumed the links in question were contained in client messages, but that's just guessing, since I've yet to observe this firsthand.
Nicole, you beat me to the punch! Upwork should perhaps look into this, because it's a new scam variation, and if nothing else, it's wasting freelancer time and connects.
Mar 12, 2019 05:10:12 PM by Scott B
Thanks for the clarification, John and Nicole. Same rules apply though and software is available to scan links before they are presented whether in email, job post, message, etc. Companies should be using this type of software anyway for their own internal defenses. Extending should be considered although the cost for something like this public platform would be interesting. Nonetheless, the tech exists to combat this problem. Even though this software is excellent, it is not 100%. It can miss actual malware or false flag a good site. There will not be 100% protection. Just something to keep in mind.
Mar 13, 2019 07:10:55 PM by Stephen L V
At the risk of repeating myself, in my recent situation, there was unverified payment method. I don't usually count projects out when seeing that, and the job post was well written, lengthy enough to contain the kind of details necessary for me to know what the job required and offered pay that reflected the skill level they were looking for. It was for a voice over, my field.They were also only looking for one freelancer. I was offered an interview around 12 hours after replying, which also made sense as that's usually the case. The interview message contained a zip file with a supplied password, which I downloaded without scanning (that's the part where I was lazy and an atypically bad computer user, but thanks for the words of defense, Preston!). It didn't take long for me to be suspicious when the file would not open, so I checked the file location and it had gone straight to my system's powershell.
Skipping ahead: Where the unverified payment method is a factor is when there are other red flags, such as 0 other jobs posted AND a simple job with a request for a ridiculously high number of applicants (such as 45 or 60). I saw 14 or 15 of those after my initial issue, all for voice overs and all with bare minimum job descriptionss (much sloppier and lazier for the post I applied for), and I flagged each of them.
I think what Nicole's post illustrated was that, when combined with other factors, an unverified payment method should be a red flag, not that it is always the case.Apologies to Nicole for potential mansplaining.
PS-My security software (Webroot) couldn't find the malware I downloaded, and it took a two hour remote session with one of their people in order to find it and kill it. He literally told me that it was the first time that virus had ever been seen by their company. His comment was "Having the only computer in the world with this virus is not a good thing". In the end, all was fixed and lessons were learned. I am somewhat bolstered by the sophisitcation of the entity that I was was infected by. It is heartening to know that Upwork does indeed attract talent.
Mar 13, 2019 08:11:41 PM by Kholleras I
Unverified payment method + zero jobs posted is not a red flag. It makes complete sense that someone who's never even posted a job before has no verified payment method yet. The lack of payment verification is almost completely irrelevant until a potential client offers you a contract. Someone looking for 60 freelancers for one voiceover is suspicious regardless of payment verification.
User | Count |
---|---|
52 | |
23 | |
6 | |
6 | |
5 |
User | Count |
---|---|
333 | |
199 | |
128 | |
64 | |
56 |
© 2015 - Upwork® Global Inc.