Cybercriminals send HR departments ransomware via phony job applications
- HR must be on the lookout for cybercriminals acting as job applicants. ZDNet reports that a new ransomware campaign, called GoldenEye, is infecting corporate human resource offices. The cybercriminals send HR email applications and even authentic-looking cover letters to trick recipients into opening infected attachments.
- GoldenEye victims are instructed to enable Macros to open Excel files, says ZDNet. The Macros send a code and then encrypt their files. Cybercriminals follow up with ransom notes demanding bitcoin payments to decrypt their files.
- GoldenEye exploits HR employees because they routinely open emails and attachments from unknown sources. ZDNet says cybersecurity researchers at Check Point are monitoring the ransomware campaign, which has targeted German users.
HR employees are at risk for ransomware attacks because they handle job applications from many unknown sources. Cybersecurity experts warn recipients to avoid enabling Macros and to watch out for unexpected or overly generic emails. Don't open unscanned attachments.
HR is an increasingly common target for malware and cyber attacks, as HR has access to a great deal of sensitive employee data that can be exploited. Additionally, many companies are not properly staffed to handle cybersecurity issues. That means HR departments have to step up to ensure proper employee training takes place to protect company data.