Deribit Warns of Sophisticated Job Scams Targeting Crypto Professionals

Deribit, a leading crypto options exchange, has issued a critical alert about sophisticated job scams on LinkedIn targeting developers and senior professionals in the cryptocurrency industry. These scams, often the first to appear in the crypto sector, exploit the allure of high-paying jobs and use advanced tactics to deceive victims, including malware distribution and theft.

• Scammers target crypto professionals on LinkedIn.
• Fake Deribit recruiters use various deceptive tactics.
• Deribit advises verification through official channels.
• CrowdStrike reports similar scams involving XMRig Monero miner.

On March 19, 2023, Deribit took to X to warn the crypto community of a surge in scammers posing as recruiters on LinkedIn. “We’ve seen a surge in scammers posing as recruiters claiming to work for Deribit,” stated Anthony Sweeney, Deribit’s Chief Information Security Officer. These fraudsters create convincing LinkedIn profiles, luring in unsuspecting job seekers with high-paying job ads.

The tactics these scammers employ are both varied and insidious. A common ploy involves tricking candidates into completing an “online assessment” that, unbeknownst to them, installs malware on their devices. This assessment is often a disguised link or file that, when opened, installs harmful software capable of stealing personal data or hijacking computing power. Another tactic involves offering fake jobs with “exclusive pre-hire perks” such as discounted company shares, only to pilfer funds from the victims. In a particularly brazen move, scammers arrange in-person meetings for contract signing, insisting that candidates bring their work laptops, likely to further compromise their systems.

Sweeney’s insight into the crypto industry’s vulnerability to such scams highlights the sector’s high stakes and technological edge, making it a prime target for exploitation. “Such scams often appear in the crypto industry first,” he noted, indicating that the industry’s allure for quick wealth and innovation attracts malicious actors early on.

This issue isn’t isolated to Deribit; other cybersecurity reports confirm similar threats in the crypto space. In January 2025, CrowdStrike identified a phishing campaign using fake job offers to distribute the XMRig Monero miner, a type of cryptocurrency mining software used maliciously to steal computing power. This campaign involved a Rust-written executable designed with specific evasion checks, showcasing the evolving nature of these scams.

The use of LinkedIn as a platform for these scams adds another layer of concern. As a trusted professional networking site, LinkedIn’s credibility is exploited to create convincing fake profiles. The timing of these scams is particularly concerning, aligning with increased remote work and job hunting, providing scammers with more opportunities to deceive.

To protect themselves, job seekers must be vigilant. Deribit advises verifying recruiters and job offers through official company channels. Here are some tips to spot fake LinkedIn profiles and verify job offers:

• Check the recruiter’s profile for any inconsistencies or lack of detailed information.
• Verify job offers directly with the company’s official website or HR department.
• Never download files or complete assessments from unsolicited sources.
• Be wary of job offers with “exclusive pre-hire perks” that sound too good to be true.

The cryptocurrency industry’s technological advancements and high-profile nature make it a prime target for job-related scams, often pioneering the latest fraud tactics. These scams not only pose a threat to individuals but can also impact the reputation and operations of crypto companies, necessitating stricter security protocols and identity checks.

Key Takeaways and Questions

• What is the nature of the job scam targeting crypto professionals?

  Scammers create fake LinkedIn profiles posing as Deribit recruiters, offering high-paying jobs to developers and senior professionals, then using various tactics to deceive victims.

• What specific tactics are used by the scammers in these job scams?

  Tactics include requesting candidates to complete an “online assessment” that installs malware, offering fake jobs with “exclusive pre-hire perks” like discounted company shares, and arranging in-person meetings for contract signing while asking candidates to bring their work laptops.

• How does Deribit recommend job seekers protect themselves from such scams?

  Deribit advises job seekers to verify recruiters’ profiles and job offers through official company channels.

• What other similar scams have been reported in the crypto industry?

  CrowdStrike identified a phishing campaign in January 2025 using fake job offers to distribute the XMRig Monero miner, a type of cryptocurrency mining software used maliciously to steal computing power.

• Why is the cryptocurrency industry particularly targeted for such scams?

  The cryptocurrency industry’s technological advancements and high-profile nature make it a prime target for job-related scams, often pioneering the latest fraud tactics.

In the world of crypto, staying vigilant is not just a recommendation; it’s a necessity. As we champion decentralization and financial freedom, we must also confront the challenges and threats that come with it. The promise of a decentralized future hinges on our ability to protect ourselves and our community from these sophisticated scams.