Earlier this month, PayChoice, a payroll processing company, was raped by pirates. Last week PayChoice hacked again. The last trick was exceptionally complex, involving a data breach, phishing emails, malicious websites, and a Trojan. Last articulated attack on a security vulnerability in the online portal for PayChoice, OnlineEmployer.com. It seems that hackers have exploited this vulnerability to steal user names and passwords of customers. The stolen credentials were then used to add fictitious employees to customers payrolls, in an attempt to make payments on recurring fraudulent bank accounts.
PayChoice is a leader in the industry payroll services and software, with more than 125,000 business customers. It should not be a surprise that hackers have targeted a company that makes so many financial transactions. But what is surprising is the persistence and creativity of hackers.
To defend against cybercriminals, be sure to install an Internet security software and update it automatically. Since the ultimate aim of the worst attacks is usually the theft of personal information that can be used to open fraudulent accounts, you can also consider investing in identity theft protection, which is designed to prevent fraudulent accounts being opened in your name.