[ISN] Monster.com Reports Theft of User Data

From: InfoSec News <alerts_at_private>
Date: Mon, 26 Jan 2009 00:10:38 -0600 (CST)
http://www.pcworld.com/businesscenter/article/158270/monstercom_reports_theft_of_user_data.html

By Nancy Gohring
IDG News Service
January 23, 2009

Monster.com is advising its users to change their passwords after data 
including e-mail addresses, names and phone numbers were stolen from its 
database.

The break-in comes just as the swelling ranks of the unemployed are 
turning to sites like Monster.com to look for work.

The company disclosed on its Web site that it recently learned its 
database had been illegally accessed. Monster.com user IDs and passwords 
were stolen, along with names, e-mail addresses, birth dates, gender, 
ethnicity, and in some cases, users' states of residence. The 
information does not include Social Security numbers, which Monster.com 
said it doesn't collect, or resumes.

Monster.com posted the warning about the breach on Friday morning and 
does not plan to send e-mails to users about the issue, said Nikki 
Richardson, a Monster.com spokeswoman. The SANS Internet Storm Center 
also posted a note about the break-in on Friday.

USAJobs.com, the U.S. government Web site for federal jobs, is hosted by 
Monster.com and was also subject to the data theft. USAJobs.com also 
posted a warning about the breach.

[...]


_______________________________________________      
Best Selling Security Books &amp; More!
http://www.shopinfosecnews.org/
Received on Sun Jan 25 2009 - 22:10:38 PST

This archive was generated by hypermail 2.2.0 : Sun Jan 25 2009 - 22:22:59 PST