14 DAY TRIAL // Cybercriminals are trying to distribute a piece of malware by attaching it to fake LinkedIn emails entitled “My Resume.”
The emails analyzed by experts from ThreatTrack Security and Conrad Longmore of Dynamoo’s Blog appear to come from various individuals, including ones named Mile Whalen, Elijah Parr and Greg Barnes.
The bogus messages simply read: “Attached is my resume, let me know if its ok.”
The file that’s attached to the emails is not a resume, but a piece of malware hidden in an executable file called “Resume_LinkedIn.exe.” It is designed to look like a Word document, so if users haven’t enabled extensions for known file types they might be tricked into thinking that it’s harmless.
The malware attempts to contact a server that has been used for other similar campaigns.
If you come across these fake LinkedIn emails, simply delete them. If you’ve already opened the “resume,” scan your computer with an antivirus solution.
Currently, the threat isn’t detected by too many security programs, but most of them will likely identify it after a few virus definition updates.