For the past two years, legitimate job postings on Indeed and Glassdoor have been replaced by scams. If you’re tricked, the scammers aren’t satisfied with your contact info in your CV, they reach out via email to request that you connect on an encrypted messenger app where they can privately scam you out of thousands in pre-hire “fees.”
Applicants now have to add vetting job postings to their repertoire, which adds time and effort to an already stressful process. Things like researching the supposed company in need of labor, and digging into reports against them.
Protect yourself and assume any job posting is fake until proven otherwise. In the US, you should report any scams you became aware of.
Edit: add the following: @LinkOpensChest_wav@lemmy.dbzer0.com recommends reaching out via phone or email to your nearest job service office, if you’re seeking employment. These places are federally funded by our taxes, so they should be able to answer questions and help guide you to whatever your best options are, even if that includes helping you find remote work with out-of-state employers.
This is literally what public/private key signing was invented for.
The person affiliated with the company signs their posting/emails with their private key, and the company maintains a list of all public keys corresponding to anyone working for them. That way, anyone outside the company who is allegedly talking to someone from a certain company can validate the signature against the public key to ensure it came from who they say they are.