Gameover Malware Targets Job Seekers 42
itwbennett writes: "A new variant of the Gameover computer Trojan is targeting job seekers and recruiters by attempting to steal log-in credentials for Monster.com and CareerBuilder.com accounts. Like the Zeus banking malware on which it is based, Gameover can steal log-in credentials and other sensitive information by injecting rogue Web forms into legitimate websites when accessed from infected computers. 'A computer infected with Gameover ZeuS will inject a new 'Sign In' button [into the Monster.com sign-in page], but the page looks otherwise identical,' security researchers from antivirus firm F-Secure said Tuesday in a blog post."
Re:rushed target selection? (Score:3, Insightful)
Not only are many who are looking for a job already employed, but job sites are a treasure trove of personal information. People post resumes with nearly everything but their ssn. They also give out phone numbers and email address of people they know.
And if you know people are looking for a job, what kinds of jobs, and can then build targeted phishing that looks like a job offer/application, get the person to give you their SSN and information, then sell it or use it.