Explore the latest news and trends  

Sign up for our weekly security newsletter

Be the first to receive important updates on security


Phishers Launch Targeted Attacks on CareerBuilder.com

A network manager said his engineering company was recently fighting phishing attacks that tried to lure with false online resumes on CareerBuiler.com. Phishers were launching targeted scams from the job recruitment site.

CareerBuilder.com had been collecting personal information consisting of contact details such as e-mail ids from its users to provide them with the latest about job postings and services catering to their interests. This collection was also to ensure efficient and effective operation of the site.

Marc Cote, manager of network services at an engineering firm in Midwest said his company regularly posted job openings on CareerBuilder.com. Recently, Cote got clues that phishers were exploiting the online job site with malicious attacks. Techworld.nl published this in news on March 13, 2007.

Cote supplied a phishing e-mail to Network World as an example of the attacks. It included a covering letter with a fake signature. The letter said that the applicant wanted to join as an employee and since the company didn't respond to his faxed resume, he was posting it via a link connected to a website.

The CareerBuilder.com site says that users could collect and use personal information such as e-mail ids or resumes that the site voluntarily displays or distributes. But it will not be responsible for the various unsolicited e-mails, such uses result. It also says that some users may have got to the site by following a link from a newspaper affiliate of CareerBuilder.com. In such instances the CareerBuilder.com site may share the users' details with that affiliate, which in turn may use those details in compliance with its own privacy policy in place of CareerBuilder.com.

An attacker typically sends e-mails to company managers searching job applicants asking them to go to a website via an attacked link to peruse a resume. On clicking the link, there is an attempt to execute a Trojan that compromises the computer, Cote added.

Cote further said that his unit had deployed filters on its computers to block those phishing websites as soon as they discovered them. It had also started spreading awareness among corporate managers about the latent problem.

Related article: Phishers Expand Their Sphere of Attacks

ยป SPAMfighter News - 3/28/2007

3 simple steps to update drivers on your Windows PCSlow PC? Optimize your Slow PC with SLOW-PCfighter!Email Cluttered with Spam? Free Spam Filter!

Dear Reader

We are happy to see you are reading our IT Security News.

We do believe, that the foundation for a good work environment starts with fast, secure and high performing computers. If you agree, then you should take a look at our Business Solutions to Spam Filter & Antivirus for even the latest version of Exchange Servers - your colleagues will appreciate it!

Go back to previous page