Sometimes, the simplest criminal ruses are the most effective. One current malware campaign attempts to trick you into infecting your computer by opening what you believe is a simple resume.
The email introduces the sender – the stated name may vary – and claims that you can review the person’s resume by opening an attached file.
Business owners, who may regularly receive job enquiry emails, may open such an email attachment as a matter of course.
But, the attached .zip file does not contain a resume. Instead, it contains a malicious .exe file. If you click the .exe file, a trojan may be installed on your computer. Once installed, the trojan may download further malware components that may steal information from your computer and allow criminals to control the computer from afar.
If you receive this email, do not click any links or open any attachments contained within.
An example of the malware email:
Subject: [Name removed] – My resume
Hi, my name is [Name removed]
Please find my resume from attach section. Kindly give me a replySincerely,