Cybersecurity analysts have identified a sophisticated scam network comprising five interconnected domains that share common infrastructure and employ deceptive business practices targeting job seekers and online shoppers. The network includes vantageclear.com, pureert.com, potentialpredator.com, dimesweeps.com, and www.revelstaffing.com, all registered through GoDaddy.com, LLC. Four of these domains were recently registered within a seven-day period in late August 2025 (August 19-26), while revelstaffing.com was established earlier in October 2022, suggesting a longer-running operation that has expanded its reach.
Technical analysis reveals extensive infrastructure sharing among these domains, with 13 documented cross-entity relationships indicating coordinated operations. The domains vantageclear.com, pureert.com, potentialpredator.com, and dimesweeps.com all share the same underlying infrastructure with 0.50 confidence ratings, while www.revelstaffing.com connects to the network through co-reporting relationships with vantageclear.com. This infrastructure overlap strongly suggests the domains are operated by the same threat actors as part of a multi-faceted scam campaign designed to appear as legitimate separate businesses.
Consumer reports reveal a two-pronged attack strategy targeting both employment seekers and e-commerce customers. In the employment scam variant, criminals posing as Revel Staffing recruiters contact job applicants for healthcare positions, claiming they need HIPAA certification before consideration and directing victims to vantageclear.com to purchase fake certifications for $39.99. Simultaneously, pureert.com operates as a fraudulent e-commerce site, accepting orders with promises of 3-6 day delivery for American-made products but failing to deliver merchandise or provide working tracking information. One victim reported placing an order on December 1, 2025, and receiving no delivery by December 10 despite the site's delivery guarantees.
To protect yourself from these scams, verify any job recruiter's legitimacy by independently researching the company and contacting them through official channels listed on their verified website. Never pay upfront fees for certifications, training, or job placement services. For online shopping, research unfamiliar retailers through the Better Business Bureau and check for verified customer reviews on independent platforms. If contacted by suspected scammers, hang up immediately, do not click on any links in emails or texts, and report the incident to the Federal Trade Commission at reportfraud.ftc.gov or the Federal Communications Commission. To check if a phone number or domain is safe, search for it online with terms like "scam" or "fraud" and consult consumer protection databases.
This network represents a high-threat level operation due to its sophisticated infrastructure sharing, multi-vector attack approach, and active targeting of vulnerable populations including job seekers in healthcare fields. Consumers should exercise extreme caution when encountering any of these domains and immediately report suspicious contact. Organizations should update their threat intelligence systems to include these indicators and monitor for similar infrastructure patterns that may indicate expansion of this criminal network.