An investigation has uncovered hackers using bots to send malware-ridden CVs to potential employers.
The CVs are difficult to identify as being a security risk, by both the recipient of the email and traditional antivirus software.
Targeted employers will receive an email from a potential job applicant, with the attached CV as a .doc file.
The attachment will deliver Quasar RAT malware to the employer, and ‘uses several counter-detection measures‘.
In the phishing attempt, recipients are asked to enter a password to open the resume. The password acts as a way to deter traditional security software.
The Millgate Security Team suggest that, in order to mitigate the risk of falling for the attempt, you should be particularly careful with any password protected documents. Consider asking applicants for unprotected versions of any documents.
Keeping your employees security-savvy can drastically reduce your business’ chance of successful phishing attacks.
If you’re unsure on how successful your business’ security strategy is, you can talk to a member of our security team on 0114 242 7310, or fill out our form here.
Microsoft 365 has moved your favourite productivity apps into the Cloud; empowering employees to work from home seamlessly and safely on multiple devices. However, with so many different subscription plans,...
Small businesses have varying levels of IT requirements. Knowing when to invest in infrastructure or contact IT service providers can be a tricky decision. After all, a solution is only...
DDoS attacks are nothing new. In fact, they represent one of the oldest forms of cyber-attack and often play a broader role in the strategies used by cybercriminals. In this...