Monster attack steals user data

Share: Email Story Twitter Facebook Stumbleupon Add to Any
by liamssoft | August 29, 2007 at 01:18 am
294 views | 0 Recommendations | 1 comment

Videos

Monster_com RI News Story SNECS

see larger video

sourced by liamssoft

Monster_com RI News Story SNECS
US job website Monster.com has suffered an online attack with the personal data of hundreds of thousands of users stolen, says a security firm.

A computer program was used to access the employers' section of the website using stolen log-in credentials.

Symantec said the log-ins were used to harvest user names, e-mail addresses, home addresses and phone numbers, which were uploaded to a remote web server.

The stolen data could be used to send phishing and spam e-mails.

"This remote server held over 1.6 million entries with personal information belonging to several hundred thousands of candidates, mainly based in the US, who had posted their resumes to the Monster.com website," reported Symantec.

The program used to access Monster.com user data was a Trojan, which are commonly used to gain access to bank details, usernames and passwords.

More than 8,000 new variants of Trojans are found each month, according to internet security specialists Sophos.

Last year, a British nurse was blackmailed by hackers who had used a Trojan to access her personal e-mails.

They threatened to reveal personal details unless she paid them.

Source: news.bbc.co.uk

Advertisement
Share: email story | add to any | | facebook | stumbleupon

Most RecentMost Recommended Comments (1)

recommend This comment thread is now closed
0
Jordan Yerman
Jordan Yerman

at 05:47 on August 29th, 2007

The worst part is how long it took Monster to admit the data breach: five days.

This story was created over 3 months ago, the comment thread is now closed.

in , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,

closeSign in to NowPublic

Not a member?

JoinIt's free!

is reporting from
Member
NP Rank: