My wife received a message on LinkedIn from someone claiming to work at "Y Recruiting Firm", based in Canada. She asked me to check it out, and I'm a bit stumped, but red flags all over the place:

1. He called her with a US-based phone number, but is based out of Canada.

2. His message to her was a bit odd ("I work for BigTech", later saying he works for Meta, but his profile and message says he works for the recruiting firm).

3. In his message, his signature had a '@meta.com' email address. This was the first red flag I noticed, as why would a third-party recruiting firm have a meta email address?

For 3, I dug a bit further, emailing it with a throwaway to see if it'd bounce. But it didn't bounce, and a reply came back almost immediately.

My email:

Subject: Follow Up

Body: Hi, Just following up to confirm your message. Thanks.

The response: "Thanks for reaching out to confirm - this is regarding the GenAI Data Annotator role at Meta."

My question: how? I'm 90% certain this is a scam, but how was this scammer able to reply with this email address? Could it be a compromised account? Who can I contact to report this?

Edit: The DKIM/DMARC records checked out as well.