Searching for a new job can be stressful, and cybercriminals know exactly how to exploit this vulnerability. At IT NEAR U, we constantly monitor emerging threats to keep our clients safe. If you recently received an unsolicited WhatsApp message from a recruiter claiming to represent NextStep Workforce and offering a remote job with Steam, be aware: this very likely a fraudulent employment scheme.
Scammers target individuals with a fake “Game Analyst” or “Steam Experience Optimisation” role. They start by posting fake adverts on Seek and LinkedIn. Once you apply, they communicate via mobile messaging apps and direct you to fake portals. Here is exactly what to look out for and how this task scam operates.
Initial contact often begins on professional platforms but quickly moves to unsolicited WhatsApp messages. The scammers frequently use international or spoofed mobile numbers, such as a +64 New Zealand country code. Major international tech companies do not cold-text candidates on WhatsApp for official hiring.
Key Red Flags to Watch Out For
The Fake “Steam” Domain (gosteamlab.com – DO NOT VISIT THIS SITE): Scammers provide a link to a fraudulent dashboard and ask you to register. Legitimate recruitment for Steam (owned by Valve Corporation) always happens through official valvesoftware.com or steampowered.com domains.
Suspicious Server Locations: The fake domain gosteamlab.com (DO NOT VISIT THIS SITE as it is associated with the IP address 64.118.154.41) resides on web servers in Hong Kong. A major US-based tech company like Valve does not host its employee onboarding portals on offshore servers under generic domains.
Refusal to Use Corporate Email: If you ask the recruiter (often using generic names like “Hannah Rose”) to verify the offer via an official work email, they invent excuses. A common script claims that work email addresses are reserved for full members only. Legitimate HR professionals always communicate from a verified corporate email address.
The “Sign-Up Bonus” Bait: To entice you to register on their fake platform, they often offer a small financial incentive, such as a $10 bonus to new staff members, which requires a specific Invitation code like 4ENSus. Real jobs pay standard wages for work completed; they do not pay you just to create a portal account.
The “Game Optimisation” Pitch: The job description sounds easy but vague. They explicitly state you will not play games. Instead, they claim your role is to assist Steam in analysing games or evaluating the Steam user experience. They ask you to review purchase activity and the ordering process to help identify which games require adjustments, simply by following a step-by-step clicking procedure.
This setup is a classic Task Scam. If you register on the provided link, the scammers direct you to a fake dashboard where they ask you to complete mundane tasks, like clicking buttons to supposedly optimise games or boost their ratings.
The dashboard shows your earnings accumulating, tricking you into believing you are making money. However, when you try to withdraw those earnings, the platform demands that you deposit your own real money (often via cryptocurrency) to unlock the funds, upgrade your account tier, or pay fake taxes. Any money you send goes directly to the scammers, and you never see the promised wages.
What You Should Do
Do Not Click the Link: Never navigate to gosteamlab.com or any other unofficial URL provided via text.
Do Not Provide Personal Information: Do not register for an account, and do not provide your phone number, email, or financial details.
Block and Report: Block the sender’s number on WhatsApp immediately and use the built-in tools of the app to report the contact as a scam.
Spread the Word: Share this information to help protect others who might search for details on the NextStep Workforce Steam job scam.
If you interacted with these scammers, clicked their portal links, or handed over personal information, you must act immediately to secure your digital footprint.
At IT NEAR U, we deliver comprehensive cybersecurity solutions designed to protect you from these exact threats. Our expert team takes immediate action to secure your systems. We conduct thorough malware removal to ensure no malicious software compromises your devices after you visit fraudulent websites.
If you suspect cybercriminals compromised your accounts, we manage your complete recovery from hacks, lock out the attackers, and safely restore your access. Furthermore, we perform rigorous bank health audits to ensure your financial accounts remain secure and to prevent any unauthorised transactions. Contact IT NEAR U today to fortify your digital defences.
Fake recruitment agencies often use spoofed names, such as slightly altered versions of legitimate firms (e.g., “radstad.com” instead of Randstad), or generic, high-sounding names to scam job seekers. Common, identified fronts include BlockNovas, Couch Chain, AppSaga, Dev-Tech, and InnoQuest.
KRG Tech, Softpath, US Tech Solutions, Inc., Vertigo Consulting, Net 2 Source, Ramy Info Tech, B Computing, Accion Labs, Alois Staffing, Panasia Group, Tech Rakers.
Impersonated Brands: Fraudsters often impersonate established agencies like Adecco or RecruitNZ.
Web3/Crypto Scams: BlockNovas, Couch Chain, AppSaga, Dev-Tech/InnoQuest, BitLink/Zentify.
Charging fees: Legitimate recruiters never charge job seekers for services.
Communication channels: Using WhatsApp, Telegram, or personal email addresses (Gmail, etc.) instead of corporate email domains.
Immediate job offers: Offering high-paying jobs without a proper interview process.
Excessive data requests: Demanding personal information like bank accounts or identity documents (passports, tax details) too early.
If you are concerned about a job offer, it is highly recommended to verify the company domain, research the company online, and check the official hiring partners of the company they claim to represent.