CareerBuilder Customers Subjected to Malware Attacks

ERE15Spring-Sponsor-CareerBuilderUpdate: CareerBuilder says the issue with infected emails has been resolved and is not an ongoing problem. In an email this morning (5/15), a spokeswoman said, “The attack has been addressed, affected customers were notified right away and no other incidents have occurred.”

If you are a CareerBuilder customer, be careful what resumes you open. It could be malware. Or worse.

For the last few weeks, attackers have been sending CareerBuilder customers malicious attachments disguised as resume documents in response to their online job postings. Because they appear to be trustworthy and come through the job site’s mail platform, unwitting recruiters open the document and even forward the emails to hiring managers and others, unleashing a bit of code that then automatically downloads the malware. Once that happens, the program can steal data or wreak other havoc.

According to Proofpoint, a cybersecurity firm that first detected the phony emails, “The actor appeared to target positions in engineering and finance, such as ‘business analyst,’ ‘web developer,’ and ‘middleware developer’: the skills listed for these positions can reveal valuable information about the tools and software that is running in the target organization and thus enable the actor to tailor their attack.”

A CareerBuilder spokeswoman said the job board is aware of the problem and has taken steps to limit the attack.

Article Continues Below

“CareerBuilder is aware and has been investigating the situation.” the spokeswoman said. “CareerBuilder follows Incident Response protocols, investigating the scope and type of attack with the help of third party experts kept under contract, and sharing information with affected customers. CareerBuilder has controls in place to stop mass distribution of applications to job postings and takes a variety of preventative measures. ”

The company declined to go into specifics for security reasons. It also didn’t say how many, if any customers had become infected.

John Zappe is the editor of TLNT.com and a contributing editor of ERE.net. John was a newspaper reporter and editor until his geek gene lead him to launch his first website in 1994. He developed and managed online newspaper employment sites and sold advertising services to recruiters and employers. Before joining ERE Media in 2006, John was a senior consultant and analyst with Advanced Interactive Media and previously was Vice President of Digital Media for the Los Angeles Newspaper Group.

Besides writing for ERE, John consults with staffing firms and employment agencies, providing content and managing their social media programs. He also works with organizations and businesses to assist with audience development and marketing. In his spare time  he can be found hiking in the California mountains or competing in canine agility and obedience competitions.

You can contact him here.

Topics

Leave a Comment

Your email address will not be published. Required fields are marked *