{"id":20537,"date":"2020-06-05T01:12:00","date_gmt":"2020-06-05T01:12:00","guid":{"rendered":"https:\/\/icrowdnewswire.com\/?p=2583074"},"modified":"2020-06-05T01:12:00","modified_gmt":"2020-06-05T01:12:00","slug":"cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials","status":"publish","type":"post","link":"https:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/","title":{"rendered":"Cybercriminals use malware-laced CVs to steal banking credentials"},"content":{"rendered":"<p><strong>Malicious CVs and medical leave forms are infecting users with banking malware<\/strong><\/p>\n<p>Security researchers have discovered malicious files masquerading as CVs online that lure victims into giving up their banking passwords and other financial information.<\/p>\n<p>According to&nbsp;<a class=\"hawk-link-parsed\" href=\"https:\/\/www.techradar.com\/news\/hackers-use-covid-19-special-offers-to-spread-malware\" data-component-tracked=\"1\" data-dimension73=\"1107214724439166500\">Check Point<\/a>, the malicious Microsoft Excel files were sent via email with subject lines such as &ldquo;applying for a job&rdquo; or &ldquo;regarding job&rdquo;. When victims open the attached files, they are asked to &ldquo;enable content&rdquo; and this allows for the&nbsp;<a class=\"hawk-link-parsed\" href=\"https:\/\/www.techradar.com\/news\/zloader-malware-makes-a-sudden-resurgence\" data-component-tracked=\"1\" data-dimension73=\"1210304699994841000\">ZLoader malware<\/a>&nbsp;to be installed on their computers. This banking malware is designed to steal credentials and other private information from users of targeted financial institutions.<\/p>\n<aside class=\"hawk-widget\" data-render-type=\"fte\" data-skip=\"dealsy\" data-widget-type=\"seasonal\" data-widget-id=\"3590081853198923000\" data-result=\"missing\"><\/aside>\n<p>The malware also has the ability to steal any passwords and cookies stored in victim&#8217;s web browsers. Using this stolen information, cybercriminals can then connect to the victim&#8217;s system and make illicit financial transactions from the banking user&#8217;s legitimate device.<\/p>\n<p>Check Point researchers have recently seen an increase in CV-themed scams in the US. During the past two months, the number of malicious files in CVs doubled with 1 out of 450 malicious files identified related to a CV file as cybercriminals try to exploit layoffs and remuneration schemes during the pandemic.<\/p>\n<h2 id=\"malicious-medical-leave-forms\">Malicious medical leave forms<\/h2>\n<p>In addition to CVs containing malicious files, Check Point researchers also found an increase in malicious medical leave forms circulating online.<\/p>\n<p>The documents, which use names such as &ldquo;COVID -19 FLMA Center.doc&rdquo;, infect victims with the&nbsp;<a class=\"hawk-link-parsed\" href=\"https:\/\/www.techradar.com\/news\/hackers-spoof-major-brands-for-black-friday-scams\" data-component-tracked=\"1\" data-dimension73=\"7894310590723194000\">IcedID<\/a>&nbsp;banking malware that targets banks, payment card providers, mobile service providers and e-commerce sites.<\/p>\n<p>The aim of this malware is to try and trick users into submitting their credentials on a fake page as well as their authorization details that can be used to compromise user accounts. These malicious files were sent via email with the subject line &ldquo;The following is a new Employee Request Form for leave within the Family and Medical Leave Act (FMLA)&rdquo;. To lure victims into opening these forms, cybercriminals sent them from different sender domains like &ldquo;medical-center.space&rdquo;.<\/p>\n<p>Manager of data intelligence at Check Point, Omer Dembinsky provided further insight on the findings of the company&#8217;s researchers, saying:<\/p>\n<p>&ldquo;As unemployment rises, cyber criminals are hard at work. They are using CVs to gain precious information, especially as it relates to money and banking. I strongly urge anyone opening an email with a CV attached to think twice. It very well could be something you regret.&rdquo;<\/p>\n<p class=\"tags\">\n<div><strong>See Campaign: <\/strong><a href=\"http:\/\/http:\/\/www.techradar.com\/news\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\" target=\"_blank\">http:\/\/http:\/\/www.techradar.com\/news\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials<\/a><br \/><b>Contact Information:<\/b><br \/>Anthony Spadafora<\/p>\n<p><b>Tags:<\/b><br \/><a href=\"\"><\/a>, <a href=\"https:\/\/icrowdnewswire.com\/category\/news-category\/wire\/\" rel=\"category tag\">Wire<\/a>, <a href=\"https:\/\/icrowdnewswire.com\/category\/global-regions\/united-states\/\" rel=\"category tag\">United States<\/a>, <a href=\"https:\/\/icrowdnewswire.com\/category\/language\/english\/\" rel=\"category tag\">English<\/a><\/p>\n<p><img loading=\"lazy\" decoding=\"async\" src=\"\" alt=\"image\" width=\"400\" height=\"300\" class=\"cwdfimg\" \/><\/div>\n<div>\n<h3>Contact Information:<\/h3>\n<p>Anthony Spadafora<\/p>\n<\/p><\/div>\n","protected":false},"excerpt":{"rendered":"<p>Malicious CVs and medical leave forms are infecting users with banking malware Security researchers have discovered malicious files masquerading as CVs online that lure victims into giving up their banking passwords and other financial information. According to&nbsp;Check Point, the malicious Microsoft Excel files were sent via email with subject lines such as &ldquo;applying for a &hellip; <a href=\"https:\/\/icrowdnewswire.com\/2020\/06\/04\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/\">Continue reading <span>Cybercriminals use malware-laced CVs to steal banking credentials<\/span><\/a> <a href=\"https:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/\" class=\"more-link\">Continue Reading <span class=\"meta-nav\">&rarr;<\/span><\/a><\/p>\n","protected":false},"author":106,"featured_media":0,"comment_status":"closed","ping_status":"closed","sticky":false,"template":"","format":"standard","meta":{"footnotes":""},"categories":[3,22,54],"tags":[],"class_list":["post-20537","post","type-post","status-publish","format-standard","hentry","category-english","category-united-states","category-wire"],"yoast_head":"<!-- This site is optimized with the Yoast SEO plugin v24.9 - https:\/\/yoast.com\/wordpress\/plugins\/seo\/ -->\n<title>Cybercriminals use malware-laced CVs to steal banking credentials - Business<\/title>\n<meta name=\"robots\" content=\"index, follow, max-snippet:-1, max-image-preview:large, max-video-preview:-1\" \/>\n<link rel=\"canonical\" href=\"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/\" \/>\n<meta property=\"og:locale\" content=\"en_US\" \/>\n<meta property=\"og:type\" content=\"article\" \/>\n<meta property=\"og:title\" content=\"Cybercriminals use malware-laced CVs to steal banking credentials - Business\" \/>\n<meta property=\"og:description\" content=\"Malicious CVs and medical leave forms are infecting users with banking malware Security researchers have discovered malicious files masquerading as CVs online that lure victims into giving up their banking passwords and other financial information. According to&nbsp;Check Point, the malicious Microsoft Excel files were sent via email with subject lines such as &ldquo;applying for a &hellip; Continue reading Cybercriminals use malware-laced CVs to steal banking credentials Continue Reading &rarr;\" \/>\n<meta property=\"og:url\" content=\"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/\" \/>\n<meta property=\"og:site_name\" content=\"Business\" \/>\n<meta property=\"article:published_time\" content=\"2020-06-05T01:12:00+00:00\" \/>\n<meta name=\"author\" content=\"Waqas Awan\" \/>\n<meta name=\"twitter:card\" content=\"summary_large_image\" \/>\n<meta name=\"twitter:label1\" content=\"Written by\" \/>\n\t<meta name=\"twitter:data1\" content=\"Waqas Awan\" \/>\n\t<meta name=\"twitter:label2\" content=\"Est. reading time\" \/>\n\t<meta name=\"twitter:data2\" content=\"2 minutes\" \/>\n<script type=\"application\/ld+json\" class=\"yoast-schema-graph\">{\"@context\":\"https:\/\/schema.org\",\"@graph\":[{\"@type\":\"WebPage\",\"@id\":\"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/\",\"url\":\"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/\",\"name\":\"Cybercriminals use malware-laced CVs to steal banking credentials - Business\",\"isPartOf\":{\"@id\":\"https:\/\/ipsnews.net\/business\/#website\"},\"datePublished\":\"2020-06-05T01:12:00+00:00\",\"author\":{\"@id\":\"https:\/\/ipsnews.net\/business\/#\/schema\/person\/46e7a3c31ebaa3d111acaa0daf39976f\"},\"breadcrumb\":{\"@id\":\"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/#breadcrumb\"},\"inLanguage\":\"en-US\",\"potentialAction\":[{\"@type\":\"ReadAction\",\"target\":[\"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/\"]}]},{\"@type\":\"BreadcrumbList\",\"@id\":\"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/#breadcrumb\",\"itemListElement\":[{\"@type\":\"ListItem\",\"position\":1,\"name\":\"Home\",\"item\":\"https:\/\/ipsnews.net\/business\/\"},{\"@type\":\"ListItem\",\"position\":2,\"name\":\"Cybercriminals use malware-laced CVs to steal banking credentials\"}]},{\"@type\":\"WebSite\",\"@id\":\"https:\/\/ipsnews.net\/business\/#website\",\"url\":\"https:\/\/ipsnews.net\/business\/\",\"name\":\"Business\",\"description\":\"\",\"potentialAction\":[{\"@type\":\"SearchAction\",\"target\":{\"@type\":\"EntryPoint\",\"urlTemplate\":\"https:\/\/ipsnews.net\/business\/?s={search_term_string}\"},\"query-input\":{\"@type\":\"PropertyValueSpecification\",\"valueRequired\":true,\"valueName\":\"search_term_string\"}}],\"inLanguage\":\"en-US\"},{\"@type\":\"Person\",\"@id\":\"https:\/\/ipsnews.net\/business\/#\/schema\/person\/46e7a3c31ebaa3d111acaa0daf39976f\",\"name\":\"Waqas Awan\",\"image\":{\"@type\":\"ImageObject\",\"inLanguage\":\"en-US\",\"@id\":\"https:\/\/ipsnews.net\/business\/#\/schema\/person\/image\/\",\"url\":\"https:\/\/secure.gravatar.com\/avatar\/3453ff882f8bf8f7e605d09dc0750c5759cb895a2d09c18a38d07b424e7f6a29?s=96&d=mm&r=g\",\"contentUrl\":\"https:\/\/secure.gravatar.com\/avatar\/3453ff882f8bf8f7e605d09dc0750c5759cb895a2d09c18a38d07b424e7f6a29?s=96&d=mm&r=g\",\"caption\":\"Waqas Awan\"},\"sameAs\":[\"https:\/\/icrowdnewswire.com\/fc\"],\"url\":\"https:\/\/ipsnews.net\/business\/author\/waqas-awan\/\"}]}<\/script>\n<!-- \/ Yoast SEO plugin. -->","yoast_head_json":{"title":"Cybercriminals use malware-laced CVs to steal banking credentials - Business","robots":{"index":"index","follow":"follow","max-snippet":"max-snippet:-1","max-image-preview":"max-image-preview:large","max-video-preview":"max-video-preview:-1"},"canonical":"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/","og_locale":"en_US","og_type":"article","og_title":"Cybercriminals use malware-laced CVs to steal banking credentials - Business","og_description":"Malicious CVs and medical leave forms are infecting users with banking malware Security researchers have discovered malicious files masquerading as CVs online that lure victims into giving up their banking passwords and other financial information. According to&nbsp;Check Point, the malicious Microsoft Excel files were sent via email with subject lines such as &ldquo;applying for a &hellip; Continue reading Cybercriminals use malware-laced CVs to steal banking credentials Continue Reading &rarr;","og_url":"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/","og_site_name":"Business","article_published_time":"2020-06-05T01:12:00+00:00","author":"Waqas Awan","twitter_card":"summary_large_image","twitter_misc":{"Written by":"Waqas Awan","Est. reading time":"2 minutes"},"schema":{"@context":"https:\/\/schema.org","@graph":[{"@type":"WebPage","@id":"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/","url":"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/","name":"Cybercriminals use malware-laced CVs to steal banking credentials - Business","isPartOf":{"@id":"https:\/\/ipsnews.net\/business\/#website"},"datePublished":"2020-06-05T01:12:00+00:00","author":{"@id":"https:\/\/ipsnews.net\/business\/#\/schema\/person\/46e7a3c31ebaa3d111acaa0daf39976f"},"breadcrumb":{"@id":"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/#breadcrumb"},"inLanguage":"en-US","potentialAction":[{"@type":"ReadAction","target":["http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/"]}]},{"@type":"BreadcrumbList","@id":"http:\/\/ipsnews.net\/business\/2020\/06\/05\/cybercriminals-use-malware-laced-cvs-to-steal-banking-credentials\/#breadcrumb","itemListElement":[{"@type":"ListItem","position":1,"name":"Home","item":"https:\/\/ipsnews.net\/business\/"},{"@type":"ListItem","position":2,"name":"Cybercriminals use malware-laced CVs to steal banking credentials"}]},{"@type":"WebSite","@id":"https:\/\/ipsnews.net\/business\/#website","url":"https:\/\/ipsnews.net\/business\/","name":"Business","description":"","potentialAction":[{"@type":"SearchAction","target":{"@type":"EntryPoint","urlTemplate":"https:\/\/ipsnews.net\/business\/?s={search_term_string}"},"query-input":{"@type":"PropertyValueSpecification","valueRequired":true,"valueName":"search_term_string"}}],"inLanguage":"en-US"},{"@type":"Person","@id":"https:\/\/ipsnews.net\/business\/#\/schema\/person\/46e7a3c31ebaa3d111acaa0daf39976f","name":"Waqas Awan","image":{"@type":"ImageObject","inLanguage":"en-US","@id":"https:\/\/ipsnews.net\/business\/#\/schema\/person\/image\/","url":"https:\/\/secure.gravatar.com\/avatar\/3453ff882f8bf8f7e605d09dc0750c5759cb895a2d09c18a38d07b424e7f6a29?s=96&d=mm&r=g","contentUrl":"https:\/\/secure.gravatar.com\/avatar\/3453ff882f8bf8f7e605d09dc0750c5759cb895a2d09c18a38d07b424e7f6a29?s=96&d=mm&r=g","caption":"Waqas Awan"},"sameAs":["https:\/\/icrowdnewswire.com\/fc"],"url":"https:\/\/ipsnews.net\/business\/author\/waqas-awan\/"}]}},"amp_enabled":true,"_links":{"self":[{"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/posts\/20537","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/users\/106"}],"replies":[{"embeddable":true,"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/comments?post=20537"}],"version-history":[{"count":1,"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/posts\/20537\/revisions"}],"predecessor-version":[{"id":20538,"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/posts\/20537\/revisions\/20538"}],"wp:attachment":[{"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/media?parent=20537"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/categories?post=20537"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/ipsnews.net\/business\/wp-json\/wp\/v2\/tags?post=20537"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}