1. Forum
  2. TQWNet
  3. TQW GENTECH

  • Millions of jobseekers could be at risk after private data leaked

    From TechnologyDaily@1337:1/100 to All on Tuesday, November 12, 2024 16:15:05
    Millions of jobseekers could be at risk after private data leaked online by recruitment firm

    Date:
    Tue, 12 Nov 2024 16:03:00 +0000

    Description:
    Job seeker data belonging to Alltech Consulting Services left exposed in online database.

    FULL STORY ======================================================================Over 200,000 records of jobseekers were left exposed in a database The records included sensitive PII that could be used in scams and fraud It isn't known how long the database was left exposed, or who accessed it

    Over two million records belonging to Alltech Consulting Services have been discovered by cybersecurity researcher Jeremiah Fowler in a non-password protected database.

    Included within the exposed data is the personally identifiable information
    of over 216,000 job seekers, including names, phone numbers, email addresses, the last four digits of their SSN, passport numbers, and work authorization visa status.

    Alltech Consulting Services work with over 1,000 organizations to source employees in the IT and engineering industries. Tons of data exposed

    The database has since had public access removed, but employer details were also contained within the database such as names, company names, email addresses, and phone numbers, along with applicant data including salary expectations, employment history, and if they were willing to relocate for
    the job.

    Considering the general salary weighting for senior IT and engineering roles, many of those who have had their data leaked from the database would be prime targets for cybercriminals looking to extort victims in spear phishing campaigns or commit fraud and identity theft using their details.

    The details contained within the database could also be used to target individuals with fake job offers, with Fowler pointing out that $737 million was lost to fake job offers between 2019 and 2023, with fake job scams rising by as much as 110% between 2022 and 2023.

    Although the records indicated the files belonged to Alltech, it is not
    known if they managed the unencrypted database or if it was managed by a
    third party," Fowler also stated in his writeup .

    "It is also unknown how long the records were exposed or if anyone else accessed them, as only an internal forensic audit can identify that information.

    The FBI recently released a warning about a series of job offers that scam victims out of cryptocurrency , and web developers have been targeted with malware hidden in Python packages by North Korean hackers. You might also
    like These are the best people search finders Amazon confirms employee data stolen after third-party MOVEit breach Take a look at the best malware
    removal software



    ======================================================================
    Link to news story: https://www.techradar.com/pro/security/millions-of-jobseekers-could-be-at-risk -after-private-data-leaked-online-by-recruitment-firm


    --- Mystic BBS v1.12 A47 (Linux/64)
    * Origin: tqwNet Technology News (1337:1/100)