Comments on: Monster.com took 5 days to disclose data theft http://www.therecruiterslounge.com/2007/08/24/monstercom-took-5-days-to-disclose-data-theft/ Exploring the wacky world of employment Mon, 18 Jan 2010 22:47:58 -0800 http://wordpress.org/?v=2.9.2 hourly 1 By: Monster Resume Database Breach, Lebenslaufdatenbank Datenklau, CVtheque, Infostealer.Monstres http://www.therecruiterslounge.com/2007/08/24/monstercom-took-5-days-to-disclose-data-theft/comment-page-1/#comment-612 Monster Resume Database Breach, Lebenslaufdatenbank Datenklau, CVtheque, Infostealer.Monstres Mon, 27 Aug 2007 08:20:00 +0000 http://www.therecruiterslounge.com/?p=1100#comment-612 [...] zufolge den Infostealer.Monstres Trojaner am 16. August entdeckt hat. Monster wurde von Symantec am 17. August über den Sicherheitsangriff informiert. Das war an jenem Tag auch auf dem Symantec Security [...] [...] zufolge den Infostealer.Monstres Trojaner am 16. August entdeckt hat. Monster wurde von Symantec am 17. August über den Sicherheitsangriff informiert. Das war an jenem Tag auch auf dem Symantec Security [...]

]]> By: karen mattonen http://www.therecruiterslounge.com/2007/08/24/monstercom-took-5-days-to-disclose-data-theft/comment-page-1/#comment-611 karen mattonen Fri, 24 Aug 2007 14:12:49 +0000 http://www.therecruiterslounge.com/?p=1100#comment-611 Jim What was even scarier about this is that the thieves targeted HR/Recruiters Accounts to get to this data (Employee Resumes and Files). Somehow they managed to obtain the Passwords (potentially stolen) to access the accounts Many may not realize but there are two ways to input employment data into monster - One is via A form and another is uploading a resume. The former will sometimes allow for use of a Social Security Number though Monster does advise against this.. Since 2005 there have been 18 Security Breaches in the US not including Monster - which have compromised over 159 Million Records Containing Sensitive Personal Information. Wow! Isn't that just over Half the American Population? http://www.privacyrights.org/ar/ChronDataBreaches.htm#2007 Jim What was even scarier about this is that the thieves targeted HR/Recruiters Accounts to get to this data (Employee Resumes and Files). Somehow they managed to obtain the Passwords (potentially stolen) to access the accounts

Many may not realize but there are two ways to input employment data into monster – One is via A form and another is uploading a resume. The former will sometimes allow for use of a Social Security Number though Monster does advise against this..

Since 2005 there have been 18 Security Breaches in the US not including Monster – which have compromised over 159 Million Records Containing Sensitive Personal Information.

Wow! Isn’t that just over Half the American Population?

http://www.privacyrights.org/ar/ChronDataBreaches.htm#2007

]]>