According to security firm PrevX, a group by the name of Phreak, criminals are using the stored cache of resumes and other personal information at various online job sites and headhunting sites to add to their collection of stolen personal information. The data is later used in Spear Phishing campaigns and other Phishing attacks.
Russian gang targets headhunting and recruitment sites in latest scams. (IMG:J.Anderson)
Phreak, the Russian based gang, is advertising a tool that, for $600, will extract personal information from various sites. The tool, PHP based, uses built-in recruiter IDs to scan recruitment sites and return results in a handy form according to Jacques Erasmus, director of research at PrevX. Erasmus came across advertising for the tool while surfing various haunts for some of the better-known gangs online.
While not Malware based, the tool is similar to one used before that was confirmed Malware. Only instead of focusing on Monster.com, the tool also adds AOL Jobs, Ajcjobs.com, Careerbuilder.com, Careermag.com, Computerjobs.com, Hotjobs.com, Jobcontrolcenter.com, Jobvertise.com, and Militaryhire.com to the list of targets.
According to research, for an extra fee, Phreak can narrow the results of the tool down to a single company, country, or group or employee.
PrevX said that CAPTCHAs could be used to limit the scope of the attack. However, earlier research has show that CAPTCHA protection is getting weaker as criminals are able to use bots to crack the various codes, and are using humans to solve the visual challenges and record the results.
View blog reactions
There are currently no comments for this article. Be the first to comment! (no registration required)
Advertising
There are currently no comments for this article. Be the first to comment! (no registration required)