As documented by Malwarebytes, the scheme’s operators are sending out messages claiming to be from the UK government, offering a free visa and other benefits to individuals willing to move to the country. SEE: Google: Half of zero-day exploits linked to poor software fixes The scam begins with messages sent to numbers via the WhatsApp mobile-messaging platform. Recipients are told that the UK needs over 132,000 additional workers in 2022, and so the government is running a recruitment drive, with over 186,000 vacant job spots available.
While cold-call messages concerning visas are red flags in themselves, the phishing attempt doesn’t stop there. The scam reads: If a victim clicks through, they are served a fraudulent domain, masquerading as a UK Visas and Immigration website. Foreigners are asked to “apply for thousands of jobs already available in the United Kingdom”. The website aims to gather the personal data of visitors, including their names, email addresses, phone numbers, marital status, and employment status.  No matter what a user submits, the free application form is automatically ‘approved,’ and they are told they “will be given a work permit, visa, plane tickets and accommodation in the UK for free”. None of this is, of course, true. As with many run-of-the-mill phishing scams, their operators will then try to obtain even more information and often attempt to generate revenue from victims.
The visa applicants are told their next form will be available once they have invited either 15 friends or five groups on WhatsApp to make others ‘aware’ of the program. In its final step, users are sent to other websites, including those selling drones and quiz websites asking for personal data, including telephone numbers. Visa-themed phishing scams are a common theme in the cyber-attacker landscape. A similar scam made the rounds several months past, attempting to lure individuals who wanted to work or study in the United Kingdom.
“All in all, this is yet another “if it’s too good to be true” escapade and should be avoided,” Malwarebytes commented.

Beware these bogus WhatsApp subscription messages that want to steal your banking info Fake WhatsApp app fooled million Android users on Google Play: Did you fall for it? WhatsApp vulnerability exploited through malicious GIFs to hijack chat sessions

Have a tip? Get in touch securely via WhatsApp | Signal at +447713 025 499, or over at Keybase: charlie0