Job‑offer phishing via AppSheet
- Scammers are using Google's AppSheet to send convincing fake job offers that land directly in inboxes. - Other schemes include Gmail account‑takeover warnings and fake Apple account-change emails designed to steal credentials. - Reports warn applicants to verify recruiter messages independently because these scams exploit trusted platforms and tooling ((ketv.com)).
Scammers are using Google’s AppSheet to send fake job offers from a real Google-linked address, pushing phishing emails into inboxes instead of spam folders. (ketv.com) AppSheet is Google’s no-code software for building apps and automations, and Google says businesses use it to create custom workflows without writing code. In the scam emails highlighted by KETV, the messages came from `noreply@appsheet.com`, which made them look routine and legitimate. (appsheet.com, ketv.com) KETV reported that the fake recruiting messages were tailored to a recipient’s work history and were designed to get job seekers to click links or hand over personal information. The station said the emails landed in primary inboxes, a detail that can make them look safer than ordinary spam. (ketv.com) This tactic fits a broader phishing pattern: criminals are leaning on trusted platforms instead of fake domains. Google’s Gmail help pages say phishing messages try to steal personal information by imitating services people already use. (support.google.com) A separate campaign reported on April 19, 2026, abused Apple account-change notifications so phishing messages were sent inside legitimate emails from Apple’s own servers. BleepingComputer said the scam used fake iPhone purchase alerts to pressure recipients into calling attackers or giving up credentials. (bleepingcomputer.com) Google users have also been targeted with account-warning scams that mimic official alerts. The Identity Theft Resource Center said one recent example warned Gmail users about a subpoena tied to their account, then tried to steal access to Gmail, Google Drive, YouTube, and linked apps. (idtheftcenter.org) Federal Trade Commission guidance to job seekers says fake recruiters often move fast, use email or text, and push victims into interviews, forms, or payments before the employer is verified. The agency says real employers do not ask applicants to pay to get hired. (consumer.ftc.gov, ftc.gov) The safest check is still the simplest one: leave the email, find the company’s public careers page or recruiter listing yourself, and make contact through that channel. Apple tells users to forward suspicious Apple-looking emails to `reportphishing@apple.com`, and Google says Gmail users can report phishing from inside the service. (support.apple.com, support.google.com)
