1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

CareerBuilder listings used as Phishing platform

Discussion in 'CSO' started by RSS, Apr 30, 2015.

  1. RSS

    RSS New Member Member

    Researchers at Proofpoint recently discovered a Phishing campaign that originated form select job postings on CareerBuilder.

    Taking advantage of the notification system the job portal uses, the attacker uploaded malicious attachments instead of résumés, which in turn forced CareerBuilder to act as a delivery vehicle for Phishing emails.

    The scam is both simple and complex. It's simple because the attacker used a known job site to target a pool of willing email recipients, and complex because the malware that was delivered is deployed in stages.

    The attack starts by submitting a malicious Word document (named resume.doc or cv.doc) to a job posting. On CareerBuilder when someone submits a document to a job listing, a notification email is generated for the person(s) who posted the job and the attachment is included.

    To read this article in full or to leave a comment, please click here

    Continue reading...

Share This Page