Security News > 2020 > June > ZLoader-Laced Emails Masquerade As CVs From Job-Seekers

ZLoader-Laced Emails Masquerade As CVs From Job-Seekers
2020-06-04 10:00

Cybercriminals are taking advantage of the massive uptick in unemployment across the U.S. in a recent spear-phishing campaign, which purports to be CVs sent from job-seekers - but actually spreads banking credential-stealing malware.

Researchers recently uncovered emails that distributed malicious files masquerading as resumes and CVs. The files, attached in Microsoft Excel format, were sent via email with subject lines such as: "Applying for a job" or "Regarding job." As victims opened the attached files, they were asked to "Enable content."

Victims were given the infamous ZLoader malware, which has previously been distributed via spear-phishing campaigns taking advantage of the coronavirus pandemic.

ZLoader is a banking malware designed to steal credentials and other private information from users of targeted financial institutions.

Campaigns are continually taking advantage of the unemployment surge in the U.S. A few weeks ago, infamous business email compromise group called Scattered Canary was discovered to have submitted hundreds of fraudulent claims with state-level U.S. unemployment websites and coronavirus relief funds.


News URL

https://threatpost.com/zloader-laced-emails-unemployed-victims/156222/