Monster.com Identity Attack May Claim More Victims - Windows XP Themes, Windows Vista Themes, Windows 7 Themes, Desktop Themes

Welcome to Belchfire Themes, the place for Free Windows XP Themes, Vista Themes, Logons, Wallpaper and other great desktop customizations.
Register free to disable pop-ups and reduce annoying advertisements! ( Log In | Register )
Note: Login and member features are only supported when viewing site in English.

Windows XP Themes, Windows Vista Themes, Windows 7 Themes, Desktop Themes » Imported News » Neowin News

Monster.com Identity Attack May Claim More Victims

Options

hamesh View Member Profile Find Member's Posts	Aug 20 2007, 11:36 AM Post #1
Admin Group: Admin Posts: 9,941 Joined: 17-July 04 From: Calgary, AB, Canada Member No.: 2	According to digital security firm Symantec, as many as 1.6 million records belonging to several hundred thousand people from Monster.com Worldwide's job search service may have been stolen by the trojan horse Infostealer.Monstres in a multistage attack targeted at stealing personal data from job search sites. Monster.com spokesman Steve Sylven said Sunday in an e-mail that "We are investigating the reports related to this Trojan and will take any necessary steps indicated by that investigation." According to Symantec security analyst Amado Hidalgo, the attackers inserted the trojan using legitimate log-ins, likely stolen from recruiters and human resource personnel who have access to the "Monster for employers" areas of the site, snatching personal data including names, e-mail addresses, home address, phone numbers and resume identification numbers. "Such a large database of highly personal information is a spammer's dream," said Hidalgo. According to the researcher, "the attackers first gather e-mail address and other personal information from resumes posted to Monster.com with Infostealer.Monstres. Next, they will try to infect the computers of those candidates by sending targeted Monster.com phishing mails which install [Banker.c or Gpcoder.e]." Banker.c is a standard info-stealing trojan which monitors for secure connections to online banking accounts; the trojan then sniffs out the victim's username and password and transfers it back to the hackers. Gpcoder.e is slightly more insidious, being "ransomware," or a trojan which encrypts files and forces the user to pay a fee to regain access to the data. View: Full Story on InfoWorld Read full story... [img]http://feeds.feedburner.com/~a/neowin-main?i=SZwmAG[/img] [img]http://feeds.feedburner.com/~f/neowin-main?i=dsaKYD6O[/img] [img]http://feeds.feedburner.com/~f/neowin-main?i=x0rwHRHC[/img] [img]http://feeds.feedburner.com/~f/neowin-main?i=XFcKvKOy[/img] [img]http://feeds.feedburner.com/~r/neowin-main/~4/146219402[/img]

« Next Oldest · Neowin News · Next Newest »

Display Mode: Switch to: Standard · Linear+ · Switch to: Outline

Track this topic · Email this topic · Print this topic · Subscribe to this forum

Licensed to: Belchfire.net


Lo-Fi Version Privacy Policy Terms of Use Contextual Advertising by

IPB skin developed by: eXtremepixels