Malware in the Gig Economy
Freelancing for a living just got a bit harder. How do you know that job brief is legit and not a scheme by hackers to install malicious software on your computer? Two prominent freelancing job sites have been targeted by hackers who disguise malware as job offers - the lifeblood for those working in the gig economy. This is the latest example of how creative hackers can be when trying to exploit unknowing victims.
Users of fiverr and Freelancer have been the latest victims of a campaign by cybercriminals who aim to install keyloggers such as Agent Tesla or Remote Access Trojan (RATs). Using the bait of details for an assignment - sent as an attachment to a job description - hackers lure the victims in by asking them to submit their estimate of hours and time to do the job. Once the freelancer opens the malicious document, their computer becomes infected. Keyloggers are a type of malware that logs every key you press on your keyboard and can capture passwords, credit card numbers and everything else you type.
Takeaway: If you have unpatched systems, your operating system is not up-to-date and macros are enabled, you may be at high risk of such attacks. Always have updated antivirus software installed on your computer and always scan attachments before opening them.