[SIG-IDtheft] Fwd: Monster.com breach
Britta Glade
britta at projectliberty.org
Thu Aug 23 15:27:29 PDT 2007
>From Eric--shut down of the prior breach I had circulated. Seems to have
taken a while to shut down....
-----------------------------------------------------------------
Monster Shuts Down Rogue Server
Monster has shut down a server that hackers used to steal job seekers'
personal data.
Jeremy Kirk, IDG News Service
Thursday, August 23, 2007 6:00 AM PDT
Monster Worldwide Inc.
<http://www.pcworld.com/tags/Monster+Worldwide+Inc..html> , whose
job-hunting sites suffered a massive data breach caused by hackers, has shut
down a rogue server that had been used to gather personal details of job
seekers.
The server contained the stolen names, addresses, phone numbers and e-mail
addresses of people who used Monster's service. The company was still
determining the number of people affected by the breech on Wednesday. It did
not disclose the location of the server.
The Monster incident is one of a growing number of prominent data breaches
highlighting continuing difficulties with Internet security.
Hackers obtained the log-in credentials for companies seeking employees and
used the credentials to access Monster.com's database of job seekers. An
automated Trojan, dubbed Infostealer.Monstres by security vendor Symantec
Corp. <http://www.pcworld.com/tags/Symantec+Corporation.html> , then
transmitted the personal information to the rogue server.
Symantec said earlier in the week it had found a server containing 1.6
million records belonging to hundreds of thousands of Monster users, mostly
in the U.S. <http://www.pcworld.com/tags/United+States.html> It was unclear
Thursday morning if the server Monster shut down is the same one that
Symantec found. A Monster spokeswoman contacted in London
<http://www.pcworld.com/tags/London.html> could not provide more
information.
As part of a multi-step attack, the job-seekers were then sent e-mails with
links to at least two kinds of malicious software. One tries to collect
login details for financial sites, and the other is designed to encrypt data
on a PC, asking for a ransom to decode the data.
Monster said it will contact the people believed to have been affected by
the attacks. It also posted an example of what a phishing e-mail looks like
on its Web site <http://help.monster.com/besafe/> .
"Regrettably, opportunistic criminals are increasingly using the Internet
for illegitimate purposes," the company said in a statement.
---------------------------------------------------------------------------
Eric Nelson
Principal - Privacy & Risk Management
949.721.5897 (office)
714.612.0367 (mobile)
enelson at stop-id-theft.net
Privacy and Secure Information Solutions
--
Britta Glade
Liberty Alliance
925-254-4233
-------------- next part --------------
An HTML attachment was scrubbed...
URL: http://lists.projectliberty.org/pipermail/sig-idtheft_lists.projectliberty.org/attachments/20070823/afdc2b77/attachment.html
-------------- next part --------------
A non-text attachment was scrubbed...
Name: winmail.dat
Type: application/ms-tnef
Size: 0 bytes
Desc: not available
Url : http://lists.projectliberty.org/pipermail/sig-idtheft_lists.projectliberty.org/attachments/20070823/afdc2b77/attachment.bin
More information about the Sig-idtheft
mailing list