A variant of the Petya ransomware dubbed GoldenEye is targeting human resources (HR) with fake job applications infected with malware. GoldenEye has been around for some time, but security firm Check Point notes that it has recently turned its attention to HR staffers that frequently open emails from unknown sources. The campaign, which is targeting HR employees in Germany, lures victims in with a legitimate looking job application. There are two files attached to the email: a PDF containing a cover letter which has no malicious content and its primary purpose is to lull the victim into a false sense of security, and an Excel file with malicious macros unbeknown to the receiver.
View full story
ORIGINAL SOURCE: The Inquirer