best thing to do is use a text only email client.... don't need no pretty pictures in my email....

Just set up you email client to only display ASCII text... no in line viewing or autoexecute of attachments.... no JAVA, Active X, .NET... no scripts...

you can see fake URLS very easy that way... so if they wanted you to download a "Monster Job" tool, you'd easily see the actual URL is not a Monster URL... usually appears as an IP address that you can trace to see who actually owns the IP range....

In fact, when visiting questionable sites, I use IE... no kidding... but what you do is to shut off everything in the "tools -internet options - security tab - custom level.

Shut off everything (ie disable) that says anything about scripts, .NET, Authenticode, etc...

The only thing that should be enabled is the execute on content....

Now it's totally useless to normally surf with, but it will be a bit more secure. Then use a different browser for normal surfing...

wam, NOVA, USA

To Richard Morgan, London, UK. I doubt the hacker software they installed even had terms and conditions, or if it did I dont think it would say right there "we are going to install a trojan and start deleting your files unless you pay us". Some people do read terms and conditions and if it said within them that they were going to take over your computer and delete files unless you pay them, people probably would not install it, and it would allow people to find out sooner that you should not download that program or install it which would reduce the number of people the hackers can get money from. Also Symantec can legally remove the software, its malicious software and could cause harm to the user if personal files are stolen or deleted, just like any other malware. Also like any other piece of software the owner can remove it at any time, or have someone else remove it for them. Thats what uninstall executables, and Add/Remove programs in Windows is for, to remove unwanted software.

David Bedford, Ellington, Connecticut, USA

Sure, you COULD go to all the trouble of continuous backups ... or you could just buy a Mac and be impervious to viruses.

I loves my Mac ...

LC, Australia,

Yet again I'm glad I use an Apple Mac.

S, Pontypridd, Wales

I expect the transfer details for the money they are asking for are fake, and what they are really after is your payment details - your credit card number / bank account etc so they can commit minor frauds of the hard to trace type on each account.

A clever ploy if so, kinda like a double bluff.

As pointed out by others, their published ploy seems rather easy for the authorities to stop. I expect these guys will get caught anyhow, too much money in this. Thing is they are probably in a country where nothing can be done about it.

Max, MK,

Hooray to the gent with the suggestion to use a memory stick for backup and remove it when not in use! I am a certified computer technician and that was my first thought, as well. I agree that even the inconvenience of possibly having to reinstall the operating system to get rid of encrypted files would be a laugh compared to losing data that could not be replaced if it hadn't been backed up. You've pretty well beaten them before they start, in this case!

Donnie Davison, East Falmouth, United States

Jobseekers beware of on-line job applications!

Use a public library computer to access Monster or any other agency to find an advertised vacancy.

Print out Monster's or such like's application form but complete it off-line by hand and send it by post or at least obtain the company's email address and contact details and download their own application form to be completed on-line.

Should any such agency require you to disclose your personal details before viewing any vacancies do not proceed any further.

Eckart Jack, Cambridge, UK

No, not hackers, crackers. Whenever the mainstream press get this wrong they look more and more foolish. Someone who is trying to hack something for illegal gain is known as a cracker. A hacker is someone who simply uses tools beyond or other than their intended use. There are a lot of people who are proud to be able to make devices do more than intended, but resent the implied criminality of "hacker".

Please correct your language.

Rubber Merduck, Dover, near Bangor, Kilmarnockshire

I wonder if the Home Office is reading this? I wonder what steps they will take to ensure their ID database is secure from these threats, and in the event that it is "hacked" or otherwise compromised, what recompense would be offered to the people whose data was stolen? Imagine what an absolute goldmine a database such as that proposed by the Home Office would be. I have heard it described as the "Golden Honeypot" for hackers. Anyone else concerned, if not, you should be - as a now retired computer professional I speak with more than 40 years experience - you should be VERY concerned! Nothing is secure from hackers - nothing. Even the most secure systems are vulnerable, there is no such thing as an absolutely secure system, and that currently being proposed by the Home Office is far short of what is required.

Adrian Ryan, Donegal, Ireland

The criminals now have advanced software technology (the most popular kinds of Captchas now seem to be useless against them) and the ability to plan ahead. Whether they worked by creating hundreds of fake companies, or whether they actually trawled their list of already-compromised companies for Monster customers hardly seems to matter – they're at liberty to do either.

The authorities could have stomped hard on cyber-crime ten year ago and nipped it in the bud. They chose not to, and now we're all at increased risk because of that. I still report to the police every spam email I receive trying to recruit me for money-laundering, even though I know my report won't be acted on.

Ian Kemmish, Biggleswade, UK

A very good attempt and i liked the way hackers managed. Though illegal and harm ful, yet possessing feeling felt. I request the hackers not to publicise the users confidential details and it is impossible for them to collect the money so let it go... but a great job executed.

shah, rawalpindi, pakistan

This looks easy enough to mitigate while it is personal computers that are targeted. These days easy to use memory sticks can hold just about everything stored on the average home PC. Backing up all one's work immediately - not forgetting to remove the device when done as it too can be infected, and never leaving it plugged in when downloading - will make such a threat (blackmail) nothing more than a nuisance. Having to reinstall everything is time consuming but a small price to pay compared to the alternative described in this article.

Edward O'Brien, Cam, England

This looks like another interesting hack. If the users willing installed the hackers software and didn't notice that within the terms and conditions of the software they agreed to have this happen to them. If this is the case then symantic will not be able to legally remove the software from their computers.

richard morgan, London, UK

It could be foreseen that hackers would aim at the largest recruiter website. What we should do before the attacking is to try to know what the hacker will do.

AndyQ, Shanghai, China

It sure is a bold move for the hackers. Monster. com would sure have less clients from now on.

BHI Pro careers, DAvao, Philippines

How do they request the money be paid? Surely a bank account can be traced.

George, Auckland, NZ

Wow, that's a bold move by the hackers to demand money like that. I wonder how long it will be before they are caught, and what effect this will have on Monster. I'm sure that a lot of people will be removing their accounts and resumes.

Mason, Florence, Alabama