Wednesday, June 04, 2008

Australia: Recruiters Auto-Forward Trojan-Infected Resumes

Liam Tung writes on ZDNet Australia:

Hackers are exploiting an email-forwarding feature offered by many recruitment firms, which automatically sends relevant resumes to customers when a new applicant uploads their CV to the recruitment firm's website.

Security firm MessageLabs first detected the scam after blocking an outbound Word (RTF) document from the recruitment company, a customer of MessageLabs. The Word document included an embedded PDF file, containing details about a candidate claiming to apply for an accounts officer position — but it also contained an executable file which installs a backdoor trojan on recipients' PCs.

More here.

0 Comments:

Post a Comment

<< Home