Hackers target recruitment sites to infect jobseekers' PCs

Recruitment sites are...

Recruitment sites are being targeted by hackers in an attempt to spread malware among job hunters.

E-mail security firm MessageLabs has discovered that a hacker has used a genuine Australian recruitment website to send an automated rich text format (RTF) e-mail that contained malicious program to a prospective employer.

The e-mail contained an embedded Adobe PDF file - purportedly of the applicant's CV - which contained a Trojan.

"Internet users think the e-mail and its associated RTF file are genuine, but they end up infecting their PCs with a Trojan that opens their machines up to remote hackers," said Geoff Sweeney, CTO of behavioral analysis security firm Tier-3.

Problems start to occur when users click through on the Adobe PDF and wait for their screen to update. This does not happen, but the machine is infected.

The hackers appear to be targeting senior managers and board-level executives with the e-mails.

Sweeney said, "The hackers are exploiting the current credit crunch, and the fact that many senior people's careers are stagnating as a result.

"They are luring people with the promise of new jobs and higher salaries, but all users end up with is an infected PC or worse."



Enjoy the benefits of CW+ membership, learn more and join.

Read more on Hackers and cybercrime prevention

Start the conversation

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.