“Foreign intelligence entities, particularly those in China, are targeting current and former U.S. government (USG) employees for recruitment by posing as consulting firms, corporate headhunters, think tanks, and other entities on social and professional networking sites,” the center said.
It said the job offerings and other online approaches “have become more sophisticated” in targeting individuals with U.S. government backgrounds seeking new jobs.
“Current and former federal employees should beware of these approaches and understand the potential consequences of engaging,“ the NCSC said. ”U.S. clearance holders are reminded of their legal obligation to protect classified data even after departing USG service.”
The center issued the warning amid persistent efforts by the Chinese Communist Party (CCP) to influence and infiltrate every aspect of U.S. society.
Warning Signs
Foreign malicious actors may pose as recruiters “affiliated with a legitimate firm from a non-alerting country,” the NCSC warned, noting that they may contact their targets via social media platforms, professional networking sites, emails, and various messaging platforms.
The center said job seekers should be on the lookout for red flags, such as job offers that are “too good to be true.” In this scenario, foreign actors may offer a job with “flexible work and a disproportionately high salary.”
Another example is recruiters who offer “exclusive job opportunities for quick payment” or an expedited hiring and payment cycle that may take only a few weeks instead of several months, according to the center.
Job seekers should also be cautious when recruiters shower them with excessive praise or urge them to move quickly from an established networking platform to a more secure communication method, it said.
“The recruiter may initially request you provide written reports on innocuous topics for the job, followed by demands for reports containing non-public or sensitive information,” the center noted.
Military
The U.S. Army previously issued a similar warning. In June 2024, Fort Eisenhower in Georgia, home to the U.S. Army Cyber Center of Excellence, asked its service members to be wary of job offers, according to a Facebook post.“Foreign adversaries are increasing the use of social media and seemingly legitimate job offers to elicit sensitive information from Department of the Army personnel and their family members,” the post reads.
Accompanying the Army warning is a list of dos and don’ts, such as turning off geotagging and location-based social networking on phones and digital cameras and not posting images of damaged equipment and gear.
The Coast Guard said foreign agents may dangle a job or a consulting gig to their targets and trick them into providing insight into Coast Guard infrastructure, operations, plans, capabilities, and technologies.
Foreign agents target all ranks—active duty, reserve, civilian, and retired—and seek individuals with access to classified data or information not publicly available, according to the Coast Guard.
Master Chief Heath Jones, master chief petty officer of the Coast Guard, asked service members to report suspicious communications.
“Our adversaries’ tactics are evolving,” Jones said, as quoted in the Coast Guard article. “By staying vigilant and reporting any suspicious activity, you play a crucial role in maintaining a safe community not just for Coast Guard members, but the total military workforce.”
