Hack attack targets 4.3 million online CVs
The personal details of 4.3 million job seekers may have been compromised in a “concerted and sophisticated” hack attack on Trinity Mirror’s recruitment sites.
According to Trinity Mirror, no actual CV details were exposed during the attack on sites such as Planet Recruit and JobSearch, even though the company believes email address and passwords may have been compromised.
“Our security systems have detected a concerted and sophisticated attempt to hack into user accounts on our technology platform,” the company told job hunters by email.
“After completing our initial investigations we can confirm that no CV records or job application information were accessed. We do not know whether email addresses and passwords were taken, but we believe that unfortunately you should work on the basis that they were.”
The company said all passwords were reset within four hours of the hack being discovered, and that staff emailed all CV posters to warn them of the problem.
“We were onto it pretty sharpish and closed things down while we sorted it out,” a Trinity Mirror spokesperson told PC Pro. “And we let everyone know what was going on, so we feel we did all the right things after the attack.”
Trinity Mirror Digital Recruitment, which focuses on sector-specific recruitment boasts more than 4.3 million registered candidates and claims 443,000 applications a month. Its sites include SecsintheCity, totallylegal, PlanetRecruit, TheCareerEngineer and GAAPweb.