Warning: fake websites are impersonating Dotinum.com and stealing data

We have recently observed a growing number of fraud attempts in which criminals pose as our Dotinum brand. They use our logo, color scheme and name to convince internet users that we are recruiting for attractive positions (“Machine Learning Engineer” and others).

In reality, Dotinum is not currently conducting any recruitment. We are a software house specializing in software development – we are not involved in recruiting, especially not for remote technical positions.

What actions have we taken to protect our brand

Thanks to reports from vigilant users who noticed suspicious ads and sites impersonating Dotinum, we were able to identify several fake domains used for fraud:

  • dotinumXXo.cc
  • dotinumXXg.cc
  • dotinumXXa.cc
  • doteanXXs.cc
  • doticnumXXs.cc

In the next steps, based on data from the public WHOIS database, we determined who the registrar of these domains is – that is, the company that enabled their registration. After our official notification, the registrar disconnected these addresses from the DNS system, effectively preventing the sites from continuing to operate. We remain in constant contact with them and are monitoring the situation.

Although this is an important step, unfortunately the problem has not disappeared completely. Fraudsters can still register further, similar domains and continue their activities. Therefore, we appeal for special caution and careful checking of website addresses that impersonate our company.

How the fraud scheme works

  • Fake landing page
    Cyber-criminals set up a site that looks visually similar to ours, containing only a login panel. In addition, the site is located under a completely different domain (most often with the .cc extension).

Below we present screenshots of the fake login panel (desktop and mobile), registration form and “terms and conditions”.

  • Phantom recruitment
    According to reports, victims receive a message or advertisement about a job at Dotinum. To “advance” to the next levels of a fictitious internship program, they must:
    • complete surveys / tests,
    • post positive reviews for specific companies,
    • pay “verification fees” or “development packages”.
  • Theft of money and data
    After several stages, contact is broken off, and the criminals disappear with the transferred funds and a complete set of personal data (first name, last name, phone number) – this is classic financial phishing.

How to recognize the real website and protect yourself from phishing

Phishing is a form of cyber-fraud in which criminals impersonate a trusted company or institution to trick the victim into providing sensitive data or making a payment. In the financial variant (so-called financial phishing) the fraud combines two goals:

  • Extortion of money – e.g. alleged “verification fees”, “development packages” or fake invoices.
  • Theft of personal data – logins, passwords, phone numbers, and sometimes even scans of documents.

The information obtained helps thieves in further attacks or in selling data in underground databases. Therefore, it is crucial to recognize the ploy from the very first moment and break off contact immediately.

How to make sure you are visiting the real Dotinum site and avoid phishing

  • Always check the exact web address
    Our only official domain is https://dotinum.com – without additional letters, characters or unusual extensions (fake sites often have a .cc extension or a subtly altered spelling of the name).
  • Dotinum does not conduct recruitment via external forms
    We do not ask candidates to create accounts, make payments, fill in tests, or take part in “development programs”. As a small software house, we also do not recruit for mass positions such as “Machine Learning Engineer”.
  • Do you have doubts? Contact us or another support channel
    If in doubt, write to info@dotinum.com, message us on Facebooku or via LinkedIn. We will verify the report and help determine whether the site is genuine.
  • Do not be fooled by the green padlock (SSL)
    Although the green padlock (SSL) next to the site address may look trustworthy, it only indicates that the connection is encrypted – it does not confirm who really controls the website.

What to do if you encounter a suspicious site

If you come across a website that appears to impersonate Dotinum or seems otherwise suspicious, take the following steps immediately to protect yourself and help prevent further abuse:

  • Do not provide any data or make any payments – never enter your personal information, passwords, or financial details on an unverified site.
  • Take a screenshot and save the full URL – this evidence can be useful in reporting the incident and assisting in the takedown process.
  • Report the incident directly to the domain registrar responsible for the suspicious site, to us, or to Google’s security team

Summary

Impersonating well-known brands is now one of the most common forms of phishing. Our team continuously monitors new registrations and responds to fake sites, but the final line of defense remains the vigilance of individual users.

Dotinum.com is the only real address of our company. We do not conduct mass recruitment and never charge fees from candidates.

Thank you to everyone who submits reports and helps protect the community from cyber-criminals. Share this article – the more people are aware of the threat, the harder it will be for fraudsters to steal money.