Cybercriminals love people in HR departments, because their job includes opening files that come from unknown sources — CVs, application materials, and so on. And these files quite often contain something malicious. You know who’s in the same boat, for the very same reason? Freelancers.

 

Freelancers also have to communicate with a lot of people they don’t know personally, and open files that come from who knows where, be it text for translation, technical documentation for a coding project, or a description for a picture they are supposed to draw. That makes freelancers an easy target for cybercriminals of all sorts.

 

A malicious task
For example, security researchers recently noticed an active campaign targeting people on websites for freelancers such as Fiverr and freelancer.com. A group of cybercriminals was contacting people registered on those services saying they had a job they wanted done, and, as the story has it, they were saying that the details were in the attached file.

 

It actually was a .doc file, not an executable, and that convinced at least some of the victims that it was safe to open. What could go wrong with a Microsoft Office document, right?

 

But a very specific thing may be wrong with Office documents: macro malware — malware hidden in macros used in MS Office files. When people open such files, they are prompted to enable macros, and some of them comply. After that — in the case of the recent campaign — the program installs a keylogger or a remote access Trojan (RAT) on their computer.

 

With keylogger or a RAT installed on your computer, the crooks can see everything you type, including your logins and passwords, which allows them to steal your accounts and your money.

 

A similar malicious campaign was allegedly spotted on LinkedIn and on Alibaba.

 

Being a freelancer has advantages, but there are huge drawbacks as well, and adding increased interest from cybercriminals to the mix can turn the burden of being a freelancer into something unbearable. So let’s discuss what you can do to protect yourself from different kinds of threats.

 

Information security tips for freelancers

 

1. Do not install any software a client or potential client wants you to install, unless you download it from official sources and make sure that it doesn’t give the client access to your computer.

 

A couple of years ago, a malicious campaign lured freelancers into installing Airdroid, an official remote access app, on their smartphones, and after that their credentials were stolen through this app.

 

2. Do not open any.exe or other executable files. They might be malicious. In case you absolutely need to do that, first check those files with an antivirus or using a Web antivirus engine such as Kaspersky Virusdesk or Virustotal.

 

3. Do not enable macros in Microsoft Word documents, Excel spreadsheets, PowerPoint presentations, and so on.

 

Macros are basically executables hidden in files, and malefactors love to fool people by sending seemingly innocent documents that actually contain malware, just like in the case described above.

 

4. Do not fall for phishing. Crooks may be interested in gaining access to your accounts on sites such as Freelancer or Fiverr, because that will also grant them access to the money you’ve earned using these services.

 

If they access your account, that might also result in damage to the reputation you’ve worked so hard to build. So watch out for misspelled sites and letters that urge you to relogin or send your credentials to someone for any reason.

 

5. When being paid directly, do not send anyone photos of your credit cards. Also do not disclose information such as expiration date or CVC/CVV code (three digits on the back of your card). That information is never necessary to get paid.

 

It’s OK to send the banking information (such as your card number) when someone needs to pay you, but it’s better to do that using secure encrypted channels such as WhatsApp, Telegram secret chats, or something like that.

 

6. Install a reliable security solution, such as Kaspersky Security Cloud, that will protect you from malware, phishing, spam, and other cyberthreats.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Share the Best of the Holiday Season with Nokia
Techworld Date Posted: 2 December 2017 4:25 PM | 571 Views
HMD Global, the home of Nokia phones, partners with global consumer finance expert Home Credit to make holiday gift-giving much easier and fun.. See More
 
Share the Best of the Holiday Season with Nokia
Techworld Date Posted: 4:25 PM | 571 Views
HMD Global, the home of Nokia phones, partners with global consumer finance expert Home Credit to make holiday gift-giving much easier and fun.See More

 
HyperX Now the Headset Sponsor of Street Fighter Champion Bonchan
Techworld Date Posted: 1 August 2018 4:57 PM | 423 Views
HyperX, the gaming division of Kingston Technology, today announced the official headset sponsorship of Masato “Bonchan” Takahashi, also known as “The King of Sagat Players.”. See More
 
HyperX Now the Headset Sponsor of Street Fighter Champion Bonchan
Techworld Date Posted: 4:57 PM | 423 Views
HyperX, the gaming division of Kingston Technology, today announced the official headset sponsorship of Masato “Bonchan” Takahashi, also known as “The King of Sagat Players.”See More

 
Bitcoin Stealers Are Back: Hunt for Users’ Cryptosavings Continues
Techworld Date Posted: 17 November 2017 8:40 AM | 354 Views
Kaspersky Lab researchers have discovered a new malware which steals cryptocurrencies from a user’s wallet by replacing their address with its own in the device’s clipboard. Criminals are targeting popular cryptocurrencies such as Bitcoin,.... See More
 
Bitcoin Stealers Are Back: Hunt for Users’ Cryptosavings Continues
Techworld Date Posted: 8:40 AM | 354 Views
Kaspersky Lab researchers have discovered a new malware which steals cryptocurrencies from a user’s wallet by replacing their address with its own in the device’s clipboard. Criminals are targeting popular cryptocurrencies such as Bitcoin,...See More

 
Transcend®’s DrivePro 550 Dashcam Provides Added Protection with Its Dual Lenses
Techworld Date Posted: 27 June 2018 1:17 PM | 577 Views
Transcend® Information, Inc. (Transcend®), a leading manufacturer of storage and multimedia products, is proud to announce the release of the DrivePro 550 Dashcam. Featuring a dual lens camera and a large viewing angle, the.... See More
 
Transcend®’s DrivePro 550 Dashcam Provides Added Protection with Its Dual Lenses
Techworld Date Posted: 1:17 PM | 577 Views
Transcend® Information, Inc. (Transcend®), a leading manufacturer of storage and multimedia products, is proud to announce the release of the DrivePro 550 Dashcam. Featuring a dual lens camera and a large viewing angle, the...See More

 
Power Mac Center Launches Lowered Service Rates, Enhanced Mail-In Repair Service
Techworld Date Posted: 7 November 2018 4:06 PM | 204 Views
In its commitment to provide genuine and hassle-free premium services to its customers, Power Mac Center’s Apple Authorized Service Provider is introducing lowered service repair rates and enhanced service offerings. . See More
 
Power Mac Center Launches Lowered Service Rates, Enhanced Mail-In Repair Service
Techworld Date Posted: 4:06 PM | 204 Views
In its commitment to provide genuine and hassle-free premium services to its customers, Power Mac Center’s Apple Authorized Service Provider is introducing lowered service repair rates and enhanced service offerings. See More

 
IDC Financial Insights Unveils 10 Fast Growing Fintechs for the Philippines at FinTech Innovation Summit 2017
Techworld Date Posted: 14 September 2017 2:02 PM | 366 Views
MANILA, Philippines – IDC Financial Insights unveiled a list of 10 fast growing fintechs in the Philippines, part of the broader FinTech 101 list for Asia/Pacific, at the FinTech Innovation Summit 2017 held at.... See More
 
IDC Financial Insights Unveils 10 Fast Growing Fintechs for the Philippines at FinTech Innovation Summit 2017
Techworld Date Posted: 2:02 PM | 366 Views
MANILA, Philippines – IDC Financial Insights unveiled a list of 10 fast growing fintechs in the Philippines, part of the broader FinTech 101 list for Asia/Pacific, at the FinTech Innovation Summit 2017 held at...See More

 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 12 April 2017 2:25 PM | 327 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline.... See More
 
PLDT Offers Lowest Call Rate to All Networks
Techworld Date Posted: 2:25 PM | 327 Views
Leading telecoms and digital services provider, PLDT, introduces its lowest call plan offer, the All Net Fam Call 299, starting April. The All Net Fam Call 299 allows subscribers to make 100 minutes of landline...See More

 
It’s Raining Pies! Nokia 6.1 Plus and Nokia 6.1 Upgrade to Android™ 9 Pie
Techworld Date Posted: 12 November 2018 4:22 PM | 239 Views
Packed with Google’s newest software and building on the features of Android™ 8.0 Oreo™, Android™ 9 Pie features artificial intelligence and machine learning to give owners a more customized and tailored experience.. See More
 
It’s Raining Pies! Nokia 6.1 Plus and Nokia 6.1 Upgrade to Android™ 9 Pie
Techworld Date Posted: 4:22 PM | 239 Views
Packed with Google’s newest software and building on the features of Android™ 8.0 Oreo™, Android™ 9 Pie features artificial intelligence and machine learning to give owners a more customized and tailored experience.See More

 
Cryptojacking Skyrockets to the Top of the Attacker Toolkit, Signaling Massive Threat to Cyber and Personal Security
Techworld Date Posted: 11 April 2018 5:01 PM | 528 Views
  Cyber criminals are rapidly adding cryptojacking to their arsenal and creating a highly profitable new revenue stream, as the ransomware market becomes overpriced and overcrowded, according to Symantec’s (Nasdaq: SYMC) Internet Security Threat.... See More
 
Cryptojacking Skyrockets to the Top of the Attacker Toolkit, Signaling Massive Threat to Cyber and Personal Security
Techworld Date Posted: 5:01 PM | 528 Views
  Cyber criminals are rapidly adding cryptojacking to their arsenal and creating a highly profitable new revenue stream, as the ransomware market becomes overpriced and overcrowded, according to Symantec’s (Nasdaq: SYMC) Internet Security Threat...See More

 
Simplify Your Life with the USB Type-C Storage Solutions from Transcend
Techworld Date Posted: 10 May 2019 11:26 AM | 44 Views
With the growing adoption of the USB Type-C standard by new platforms and devices, Transcend Information, Inc. (Transcend), a leading manufacturer of storage and multimedia products, has constantly developed a wide range of USB.... See More
 
Simplify Your Life with the USB Type-C Storage Solutions from Transcend
Techworld Date Posted: 11:26 AM | 44 Views
With the growing adoption of the USB Type-C standard by new platforms and devices, Transcend Information, Inc. (Transcend), a leading manufacturer of storage and multimedia products, has constantly developed a wide range of USB...See More


Power by

Download Free AZ | Free Wordpress Themes