Free Newsletter
Register for our Free Newsletters
Access Control
Deutsche Zone (German Zone)
Education, Training and Professional Services
Government Programmes
Guarding, Equipment and Enforcement
Industrial Computing Security
IT Security
Physical Security
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
News targeted by Phishing gangs

McAfee : 15 July, 2008  (Technical Article)
Identity thieves from the CIS have accessed over a million user details from in massive focused phishing attack
McAfee Avert Labs have discovered a new phishing scam targeting users of The attractiveness of popular recruitment sites and the perceived value of the information that can be accessed if such sites can be breached is clear from previous issues. In August 2007, over 1.3 million users' details were stolen from when it was compromised by an illegal operation, run from two server computers at a Web hosting company in the Ukraine. More recently and other leading sites were targeted by the Russian gang 'Phreak', who extracted data from CVs using an identity harvesting tool.

This new scam targets both job seekers and recruiters using E-mails asking users to click through and update their profile appear to be linked to but can be traced back to a bot in Turkey. However, this scam is most likely to impact recruiters, with the perpetrators of the scam trying to gain access to their accounts and consequently to hundreds or even thousands of CVs.

Greg Day, Security Analyst for McAfee commented,

"Scammers are trying more and more diverse and sophisticated techniques to obtain information that can be of financial reward or value. With the news full of stories about the credit crunch, leading to concerns about potential job cutbacks, many people are looking to the Internet to find potential employment opportunities and see what's available to provide some reassurance in the current climate. Unfortunately, scammers are getting wise to this as we have seen with a recent influx of phishing attacks looking to steal personal details by gaining access to online job hunting profiles or tempting victims with information of potential job openings."

"The repercussions of this are potentially huge. If a cyber criminal is able to access a large number of CVs, the information obtained could be easily used for malicious intent. As far as cyber criminals are concerned, CVs offer a goldmine of information, so this would be a major result for them."
Bookmark and Share
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
   © 2012
Netgains Logo