Wall Street & Technology is part of the Informa Tech Division of Informa PLC

This site is operated by a business or businesses owned by Informa PLC and all copyright resides with them. Informa PLC's registered office is 5 Howick Place, London SW1P 1WG. Registered in England and Wales. Number 8860726.

Risk Management

05:50 PM
Connect Directly
Facebook
Google+
LinkedIn
Twitter
RSS
E-Mail
50%
50%

Job Hunters and Recruiters Targeted by Data Thieves

Job hunters posting resumes online - and recruiters perusing them - are at risk. Symantec says a Trojan targeting popular job site Monster.com has recently stolen more than 1.6 million records.

Job hunters posting resumes online - and recruiters perusing them - are at risk. Symantec says a Trojan targeting popular job site Monster.com has recently stolen more than 1.6 million records.That data is being used to target Monster.com users with credible phishing mail that plants malware on their personal - or corporate - computers. According to Symantec Corp, a Trojan horse called Infostealer.Monstres has stolen more than 1.6 million records belonging to Monster Worldwide Inc''s job search service. The personal information includes names, e-mail addresses, home address, phone numbers and resume identification numbers.

It worked by using legitimate log-ins from Monster.com, most likely stolen from recruiters and human resource personnel who have access to the "Monster for employers" areas of the site.

Once inside, the Trojan horse ran automated searches for resumes of candidates located in certain countries or working in certain fields. The results were then uploaded to the attackers' remote server. Hackers then tried to infect the computers of candidates by sending targeted Monster.com phishing mails which install malware.

The first piece of malware, dubbed Banker.c by Symantec, is an information-stealing Trojan horse that monitors the infected PC for log-ons to online banking accounts.

When it notices a log-on in process, Banker.c records the username and password and transmits the data back to the hackers.

Gpcoder.e is a Trojan horse that encrypts files on the hacked computer, then holds those files hostage until the user pays a fee to unlock the data. Melanie Rodier has worked as a print and broadcast journalist for over 10 years, covering business and finance, general news, and film trade news. Prior to joining Wall Street & Technology in April 2007, Melanie lived in Paris, where she worked for the International Herald ... View Full Bio

Register for Wall Street & Technology Newsletters
Video
Inside Abel Noser's Trading Floor
Inside Abel Noser's Trading Floor
Advanced Trading takes you on an exclusive tour of Abel Noser's New York trading floor, where the agency broker known for transaction cost analysis, is customizing algorithms for the buy side, while growing its fixed income trading and transitions business.