Researchers at Check Point have recently discovered that in May 2020, nearly 250 domains were registered with the word “employment” inside. They found that 7% of the domains were found to be malicious and 9% were suspected to be as well. They also found that these malicious files being a fake CV phishing scam has been doubling in the past two months. Cybercriminals are luring in potential victims into opening .xls attachments by using phishing emails with subject lines such as “applying for job” or “regarding job.” Victims are then asked to enable content permission, which immediately initiates the malicious file that downloads the trojan or ransomware.
If your company is currently in the process of searching for new hires and are not sure if you are fully safe from potential phishing attacks, please feel free to contact OptfinITy at (730)-790-0400 or at firstname.lastname@example.org.