CareerBuilder listings used as Phishing platform

less than 1 minute read

phished

Researchers at Proofpoint recently discovered a Phishing campaign that originated from select job postings on CareerBuilder.

Companies seeking applicants allow them to send resumes. Someone figured out how to upload files that install viruses in a staged attack. The brilliant part of it is that most companies using CareerBuilder will also whitelist attachments from CareerBuilder, and are expecting to get attachments from unknown people, making a (spear-)phishing attack that much easier.

Source: CareerBuilder listings used as Phishing platform | CSO Online

You May Also Enjoy

Testing Stack…

less than 1 minute read

Verifying that new Gemfile.lock-less build works and entire pipeline is still working. Perhaps not the best way to do integration testing? :-)

Goodbye Catalant

1 minute read

Today marks the end of my journey at Catalant Technologies. Even though the end was unexpected, I have met so many great people and learned so much in the ti...

My Craziest Production Fix Ever!

1 minute read

I used to work on a trading floor for the short term bond/repo desk some time ago at a small buy-side firm. My job was to create and maintain command-line an...