Recruitment sites are being targeted by hackers in an attempt to spread malware among job hunters.
E-mail security firm MessageLabs has discovered that a hacker has used a genuine Australian recruitment website to send an automated rich text format (RTF) e-mail that contained malicious program to a prospective employer.
The e-mail contained an embedded Adobe PDF file - purportedly of the applicant's CV - which contained a Trojan.
"Internet users think the e-mail and its associated RTF file are genuine, but they end up infecting their PCs with a Trojan that opens their machines up to remote hackers," said Geoff Sweeney, CTO of behavioral analysis security firm Tier-3.
Problems start to occur when users click through on the Adobe PDF and wait for their screen to update. This does not happen, but the machine is infected.
The hackers appear to be targeting senior managers and board-level executives with the e-mails.
Sweeney said, "The hackers are exploiting the current credit crunch, and the fact that many senior people's careers are stagnating as a result.
"They are luring people with the promise of new jobs and higher salaries, but all users end up with is an infected PC or worse."
Subscribe to:
Post Comments (Atom)
No comments:
Post a Comment