"Unfortunately we have to inform you that your qualifications and experience does not fit the position you applied for. We have attached a copy of your application you sent for us."
The above email message (an actual reported one) reads like a 'genuine' reply from a recruitment agency, complete with internet links to a legitimate company or job hunt firm.
Hey, it even includes a copy of that application you sent in - perhaps one of the many you emailed out in your search for that elusive position.
But open up that attached document and you are in for a destructive virus attack.
Taking advantage of the worsening economic situation, spammers worldwide are using job-search related emails to prey on unsuspecting internet users, said security software company Symantec on Friday in a news release.
Under the guise of subject headers like "HURRY! I found you a new job" and "Job you might be interested in!" - these emails are sent out in the hope the recipient will provide personal information such as names, phone numbers, and addresses.
In its "State of Spam Report" for March 2009, Symantec also noticed spam messages which targeted "one of the downsides to looking for a job - the rejection letter."
Such emails take the form of a reply from a recruitment agency, complete with genuine internet links to firms, and even with the job application form that you allegedly sent in yourself.
The attached electronic document, however if opened, will subject the recipient's system to an attack from the Hacktool.Spammer virus.
Hacktool.Spammer is a malicious program that hackers use to attack mail boxes by flooding them with email. It can be programmed to send many email messages to specific addresses.
"It will be difficult to ignore emails from job agencies, but we should definitely be cautious of file types, particularly executables (.exe)," advised Symantec.
"Any email with this type of application extension should be considered suspicious, particularly if it's coming from an unknown sender."
"Email users should be aware of these type of ruses during this difficult economic period, and avoid letting spammers collect personal information that may be used in the future to prey on unsuspecting individuals and infect computers with malicious content."
- AsiaOne
No comments:
Post a Comment