← All articles

Fake job interviews from big brands phish marketing staff for Google accounts

A phishing campaign is impersonating more than 30 well-known brands, including Adobe, Netflix, Coca-Cola, and OpenAI, in fake job-interview lures aimed at marketing professionals, with the goal of stealing their Google account credentials. Posing as recruiters from desirable companies, the attackers draw targets into a process that leads to a convincing Google sign-in page under their control. Because marketers often manage valuable brand, advertising, and analytics accounts tied to Google, a stolen login can open the door to ad fraud, data access, and further impersonation. The lure works by exploiting excitement about a career opportunity to lower the target's guard.

Check
Warn staff, especially in marketing, that recruiters asking them to sign in with Google to view interview or job details may be phishing, and verify any unexpected job outreach through official channels.
Affected
Marketing and other professionals targeted by fake job offers from impersonated big brands; stolen Google credentials can expose advertising, analytics, and brand accounts and enable further fraud and impersonation.
Fix
Use phishing-resistant multi-factor authentication like passkeys on Google accounts, verify recruiter outreach independently, never enter credentials on pages reached through unsolicited links, and check the domain before signing in anywhere.