Security centre is dedicated to providing the safest possible environment for you to search for jobs and manage your career. To assist with that goal, we ask that you keep a few simple security precautions in mind. When evaluating job postings on and job opportunities that you may receive unsolicited via email.

Fraudulent jobs and email

For example, it’s possible that you may encounter fraudulent job opportunities when searching for jobs online. Or you may receive fraudulent email that has had the sender’s email address forged to make it appear as if it came from Such practices are a violation of’s Terms of Use and may be a criminal.


Regrettably, all online companies are susceptible to occasional scams. While’s makes every effort to prevent this abuse, it is not immune to such activity. To help you conduct a safer job search, we’ve assembled the following security-related articles and resources. Familiarising you with this information will help you better manage your career.

Common security threats


Phishing emails are an increasingly common method used to try and gain access to personal details. To carry out fraud or identity theft.

Typically, a phishing email will claim to have been sent by a reputable organisation and ask that you respond to the email with your username or password. That you enter your sign in details over a ‘secure’ connection.

While phishing emails can seem very professional. There are usually some clues to alert you to the fraudulent nature of the emails. When reading an email claiming to be sent from, you should always keep in mind.

Following questions in mind

  •  Are you being asked to provide your password?
  • will never ask you to provide your password in response to an email or phone call.
  • Are there spelling and grammar mistakes in the email? Phishing emails often originate from outside the UK and spelling and grammar mistakes are common.
  • Are you being asked to download something? If you don’t recognise a file, don’t download it. All account details are stored online, so we’ll never ask you to download anything to use the service.
  • Are you being threatened with losing access to your account? Phishing emails sometimes make it seem like you’ll lose access to your account unless you download something or provide your sign in details. will never ask you to do anything like this to keep your account open.

If you’re suspicious of any email, you receive from Please contact us with the subject line of the email, and the email address it was sent from.

Money laundering

Job seekers are an increasingly common target for money laundering scam emails. Typically, these emails concern a job offer and the sender may claim to have found your details on a job site such as They often offer job titles such as ‘human resources manager’ or ‘admin assistant’.

Money laundering scams usually have five key stages

  • A job seeker responds to a fake email job offer
  • The job seeker is asked for their bank details
  • A cheque is paid into the jobseeker’s bank account
  • The job seeker is instructed to transfer a portion of the funds into another account (often via a money transfer service, such as Moneygram or the Western Union) and keep the remainder as their payment
  • Once the job seeker has transferred the money, the cheque bounces and the victim is left with the debt

Falling victim to a money-laundering scam is not only distressing, but it can also affect credit ratings and bring victims under suspicion of criminal activity.

However, there are some tell-tale signs to look out for to help you spot a potential money laundering scam

  • Are you being offered an opportunity to work from home? Usually, this type of scam email includes the offer of a great opportunity to work from home as a transaction processor or similar.
  • Is the salary offered realistically? Usually, the fake jobs being offered in this type of scam offer an unrealistically high salary.
  • Are you being asked for bank details? Money laundering scammers will ask you for your bank details. You should never give these out to a company you don’t completely trust.
  • Do you have a personal contact? In most money laundering scams, communication will be carried out entirely over email and instant messaging, with no telephone or face to face contact.
  • Are there spelling and grammar mistakes in the email? Money laundering scam emails often originate from outside the UK and spelling, and grammar mistakes are common.

If you’re suspicious of any email you receive, please contact us including the subject line of the email you received, and the email address it was sent from.


Spoofing occurs when a criminal creates an exact copy of a website to make a fraudulent company look legitimate. A spoofed website will usually look the same as the website of a legitimate company, but with a slightly different web address. (e.g., ‘.biz’ instead of ‘.com’ or ‘’). If you’re suspicious of any website, you’re directed to as a result of your dealings with Please contact us, and we’ll investigate.

Identity theft

Identity theft occurs when an individual steals personal details from someone else and uses the information to fraudulently impersonate that individual. Victims of ID theft often find that their details are used to open bank accounts and obtain credit in their name.

Identity theft can only take place where a criminal has been able to gain access to enough personal. Details to create false documents in another person’s name. In order to avoid becoming a victim of identity theft.

  • Never give out sensitive personal information such as your bank details, date of birth,
  • National Insurance number or a copy of your passport in relation to an email
  • Look out for, spelling and grammar mistakes in emails you receive
  • Never give out your sign in details in response to an email

If you suspect that you’ve been a victim of identity theft, you should contact the police as soon as possible. Details on how to report fraud can be found here.

What you can do to protect yourself

Account security

Online security risks can be minimised simply by ensuring that your password is always kept secure. We recommend you follow the password security information below

  • Always use a password which is personal and does not contain your name, email address or the word ‘password.’
  • Ensure your password contains both letters and numbers
  • Never give your password out to anyone – we will never ask you for your password
  • Take a moment to memorise your password, so you don’t need to write it down
  • Try and use a different password for each different website you use
  • Change your password at least once every three months

CV security

Uploading your CV to is an important part of the process of seeking a job. And could help you to be headhunted for great roles. It’s important you provide enough information on your CV for recruiters to contact you.

However, to ensure your security online, you should never include any of the followings in your CV:

  • National Insurance number
  • Passwords
  • Date of birth
  • Driving licence number
  • Bank details
  • Credit card details

General advice

  • It’s always important to be mindful of your security and safety online. Look at our top 10 tips to staying safe online to make sure you’re not putting yourself at risk.
  • Never agree to process funds through your personal bank account on behalf of a company. Any legitimate company will have corporate accounts, so would never ask you to do this.
  • If it looks too good to be true, it probably is. Be wary of offers for jobs paying a high salary for working from home.
  • Don’t put personal information on your CV. Recruiters don’t need to see your date of birth or NI number on your CV.
  • Never provide personal details when looking for a job. There’s no need for a recruiter to request your bank details before you’ve been through the interview process and been offered a role.
  • Never provide your personal details over a non-secure connection. If you’re being asked to enter sign in details, look for the “https://” at the beginning of the website address.
  • Be wary of recruiters with no personal contact. It’s very unlikely that a recruiter would offer you a job without a telephone and face to face interview.
  • Look out for bad spelling and grammar. Email scams often originate from outside the UK so may not contain perfect English.
  • Never provide your username and password in an email purporting to be from We’ll never ask you to provide this information in an email.
  • Be wary of recruiters with no personal contact. It’s very unlikely that a recruiter would offer you a job without a telephone and face to face interview.
  • Keep your password secure and up-to-date. Passwords should be changed once every three months and shouldn’t contain your name, email address or the word ‘password’.
  • Are you in doubt, report it. If you’re suspicious about any contact you receive related to, contact us and our Customer Support Team will investigate.

If you think you have been the victim of online fraud, report it to Action Fraud, the national fraud and internet crime reporting centre, who will be able to advise you further.

You can contact Action Fraud on 0300 123 2040, or visit their website for advice

Your security