Cybercriminals love people in HR departments, because their job includes opening files that come from unknown sources — CVs, application materials, and so on. And these files quite often contain something malicious. You know who’s in the same boat, for the very same reason? Freelancers.

 

Freelancers also have to communicate with a lot of people they don’t know personally, and open files that come from who knows where, be it text for translation, technical documentation for a coding project, or a description for a picture they are supposed to draw. That makes freelancers an easy target for cybercriminals of all sorts.

 

A malicious task
For example, security researchers recently noticed an active campaign targeting people on websites for freelancers such as Fiverr and freelancer.com. A group of cybercriminals was contacting people registered on those services saying they had a job they wanted done, and, as the story has it, they were saying that the details were in the attached file.

 

It actually was a .doc file, not an executable, and that convinced at least some of the victims that it was safe to open. What could go wrong with a Microsoft Office document, right?

 

But a very specific thing may be wrong with Office documents: macro malware — malware hidden in macros used in MS Office files. When people open such files, they are prompted to enable macros, and some of them comply. After that — in the case of the recent campaign — the program installs a keylogger or a remote access Trojan (RAT) on their computer.

 

With keylogger or a RAT installed on your computer, the crooks can see everything you type, including your logins and passwords, which allows them to steal your accounts and your money.

 

A similar malicious campaign was allegedly spotted on LinkedIn and on Alibaba.

 

Being a freelancer has advantages, but there are huge drawbacks as well, and adding increased interest from cybercriminals to the mix can turn the burden of being a freelancer into something unbearable. So let’s discuss what you can do to protect yourself from different kinds of threats.

 

Information security tips for freelancers

 

1. Do not install any software a client or potential client wants you to install, unless you download it from official sources and make sure that it doesn’t give the client access to your computer.

 

A couple of years ago, a malicious campaign lured freelancers into installing Airdroid, an official remote access app, on their smartphones, and after that their credentials were stolen through this app.

 

2. Do not open any.exe or other executable files. They might be malicious. In case you absolutely need to do that, first check those files with an antivirus or using a Web antivirus engine such as Kaspersky Virusdesk or Virustotal.

 

3. Do not enable macros in Microsoft Word documents, Excel spreadsheets, PowerPoint presentations, and so on.

 

Macros are basically executables hidden in files, and malefactors love to fool people by sending seemingly innocent documents that actually contain malware, just like in the case described above.

 

4. Do not fall for phishing. Crooks may be interested in gaining access to your accounts on sites such as Freelancer or Fiverr, because that will also grant them access to the money you’ve earned using these services.

 

If they access your account, that might also result in damage to the reputation you’ve worked so hard to build. So watch out for misspelled sites and letters that urge you to relogin or send your credentials to someone for any reason.

 

5. When being paid directly, do not send anyone photos of your credit cards. Also do not disclose information such as expiration date or CVC/CVV code (three digits on the back of your card). That information is never necessary to get paid.

 

It’s OK to send the banking information (such as your card number) when someone needs to pay you, but it’s better to do that using secure encrypted channels such as WhatsApp, Telegram secret chats, or something like that.

 

6. Install a reliable security solution, such as Kaspersky Security Cloud, that will protect you from malware, phishing, spam, and other cyberthreats.


RECOMMENDED ARTICLE FOR TECHWORLD


 
Realme 3 Marks PH Entry with Shopee Promo
Techworld Date Posted: 23 March 2019 10:14 AM | 56 Views
Budget smartphone disruptor realme 3 is finally here in the Philippines, ready to let Filipinos #DiscoverRealValue. To celebrate the arrival of the smartphone in the country, realme Philippines joins Shopee’s March 25 Flash Sale.... See More
 
Realme 3 Marks PH Entry with Shopee Promo
Techworld Date Posted: 10:14 AM | 56 Views
Budget smartphone disruptor realme 3 is finally here in the Philippines, ready to let Filipinos #DiscoverRealValue. To celebrate the arrival of the smartphone in the country, realme Philippines joins Shopee’s March 25 Flash Sale...See More

 
Philips Showcases Impressive Monitors at National Retail Conference
Techworld Date Posted: 25 August 2018 4:55 PM | 713 Views
Philips, a well-known brand for making high-performance and innovative display solutions for home and businesses, was at the recently concluded National Retail Conference (NRCE) Philippines that was held at SMX Convention Center, Pasay City,.... See More
 
Philips Showcases Impressive Monitors at National Retail Conference
Techworld Date Posted: 4:55 PM | 713 Views
Philips, a well-known brand for making high-performance and innovative display solutions for home and businesses, was at the recently concluded National Retail Conference (NRCE) Philippines that was held at SMX Convention Center, Pasay City,...See More

 
Predictions: AI Fuzzing and Machine Learning Poisoning
Techworld Date Posted: 27 December 2018 4:39 PM | 212 Views
  For many criminal organizations, attack techniques are evaluated not only in terms of their effectiveness, but in the overhead required to develop, modify, and implement them. To maximize revenue, for example, they are.... See More
 
Predictions: AI Fuzzing and Machine Learning Poisoning
Techworld Date Posted: 4:39 PM | 212 Views
  For many criminal organizations, attack techniques are evaluated not only in terms of their effectiveness, but in the overhead required to develop, modify, and implement them. To maximize revenue, for example, they are...See More

 
Cybercriminals Use Smartphone Calendars to Distribute Scam Offers
Techworld Date Posted: 25 June 2019 10:00 AM | 20 Views
Cybercriminals Use Smartphone Calendars to Distribute Scam Offers. See More
 
Cybercriminals Use Smartphone Calendars to Distribute Scam Offers
Techworld Date Posted: 10:00 AM | 20 Views
Cybercriminals Use Smartphone Calendars to Distribute Scam OffersSee More

 
Silence Trojan: The New Russian-Speaking Hacking Group Hunts for Financial Organizations
Techworld Date Posted: 6 November 2017 4:02 PM | 342 Views
In September 2017 Kaspersky Lab researchers identified a new series of targeted attacks against at least 10 financial organizations in multiple regions including Russia, Armenia, and Malaysia. The hits are being performed by a.... See More
 
Silence Trojan: The New Russian-Speaking Hacking Group Hunts for Financial Organizations
Techworld Date Posted: 4:02 PM | 342 Views
In September 2017 Kaspersky Lab researchers identified a new series of targeted attacks against at least 10 financial organizations in multiple regions including Russia, Armenia, and Malaysia. The hits are being performed by a...See More

 
There’s still time! Avail the Best Gaming Notebook This Holiday Season
Techworld Date Posted: 16 December 2017 4:43 PM | 404 Views
Only few days left for you to take advantage of this Christmas treat. MSI got you covered with up to P15,000 cash discount plus premium items as freebies upon purchase on select models. . See More
 
There’s still time! Avail the Best Gaming Notebook This Holiday Season
Techworld Date Posted: 4:43 PM | 404 Views
Only few days left for you to take advantage of this Christmas treat. MSI got you covered with up to P15,000 cash discount plus premium items as freebies upon purchase on select models. See More

 
IDC Philippines Reveals Strategies Needed to Become Digitally Determined Enterprise at CIO Summit 2019
Techworld Date Posted: 24 April 2019 4:32 PM | 29 Views
IDC hosted its annual CIO Summit at the Shangri-La at the Fort, Manila exploring practical strategies to move businesses through their digital transformation (DX) journey. This year's CIO Summit, themed “The Digital Determination Playbook,”.... See More
 
IDC Philippines Reveals Strategies Needed to Become Digitally Determined Enterprise at CIO Summit 2019
Techworld Date Posted: 4:32 PM | 29 Views
IDC hosted its annual CIO Summit at the Shangri-La at the Fort, Manila exploring practical strategies to move businesses through their digital transformation (DX) journey. This year's CIO Summit, themed “The Digital Determination Playbook,”...See More

 
What’s your treasured Nokia moment?
Techworld Date Posted: 22 December 2017 3:03 PM | 347 Views
Admit it, before all the fuss about touchscreens and sleek metal frames and glass back, the rave was all about the sturdiest body, intuitive interface, and interchangeable covers and keypads. See More
 
What’s your treasured Nokia moment?
Techworld Date Posted: 3:03 PM | 347 Views
Admit it, before all the fuss about touchscreens and sleek metal frames and glass back, the rave was all about the sturdiest body, intuitive interface, and interchangeable covers and keypadsSee More

 
Study Reveals More Than Half of Asia Pacific Consumers Prioritize Security over Convenience in their App Experience
Techworld Date Posted: 24 August 2018 4:28 PM | 191 Views
Consumers will now trade app convenience for security, according to a study commissioned by F5 Networks (NASDAQ: FFIV) ‘The Curve of Convenience – the trade-off between security and convenience’. . See More
 
Study Reveals More Than Half of Asia Pacific Consumers Prioritize Security over Convenience in their App Experience
Techworld Date Posted: 4:28 PM | 191 Views
Consumers will now trade app convenience for security, according to a study commissioned by F5 Networks (NASDAQ: FFIV) ‘The Curve of Convenience – the trade-off between security and convenience’. See More

 
ZOWIE eXTREMESLAND Qualifiers Is Now Open
Techworld Date Posted: 26 July 2018 1:41 PM | 591 Views
BenQ Philippines in Partnership with ArkAngel Internet Café and WASD Philippines is proud to bring the Extremesland Official Philippine Qualifiers.. See More
 
ZOWIE eXTREMESLAND Qualifiers Is Now Open
Techworld Date Posted: 1:41 PM | 591 Views
BenQ Philippines in Partnership with ArkAngel Internet Café and WASD Philippines is proud to bring the Extremesland Official Philippine Qualifiers.See More


Power by

Download Free AZ | Free Wordpress Themes