Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Monster.com targeted by Phishing gangs

McAfee : 15 July, 2008  (Technical Article)
Identity thieves from the CIS have accessed over a million user details from Monster.com in massive focused phishing attack
McAfee Avert Labs have discovered a new phishing scam targeting users of Monster.com. The attractiveness of popular recruitment sites and the perceived value of the information that can be accessed if such sites can be breached is clear from previous issues. In August 2007, over 1.3 million users' details were stolen from Monster.com when it was compromised by an illegal operation, run from two server computers at a Web hosting company in the Ukraine. More recently Monster.com and other leading sites were targeted by the Russian gang 'Phreak', who extracted data from CVs using an identity harvesting tool.

This new scam targets both job seekers and recruiters using Monster.com. E-mails asking users to click through and update their profile appear to be linked to Monster.com but can be traced back to a bot in Turkey. However, this scam is most likely to impact recruiters, with the perpetrators of the scam trying to gain access to their accounts and consequently to hundreds or even thousands of CVs.

Greg Day, Security Analyst for McAfee commented,

"Scammers are trying more and more diverse and sophisticated techniques to obtain information that can be of financial reward or value. With the news full of stories about the credit crunch, leading to concerns about potential job cutbacks, many people are looking to the Internet to find potential employment opportunities and see what's available to provide some reassurance in the current climate. Unfortunately, scammers are getting wise to this as we have seen with a recent influx of phishing attacks looking to steal personal details by gaining access to online job hunting profiles or tempting victims with information of potential job openings."

"The repercussions of this are potentially huge. If a cyber criminal is able to access a large number of CVs, the information obtained could be easily used for malicious intent. As far as cyber criminals are concerned, CVs offer a goldmine of information, so this would be a major result for them."
Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo