Monster Problems
Friday, 31 August 2007 08:07 pm![[personal profile]](https://www.dreamwidth.org/img/silk/identity/user.png)
Security breach at Monster likely involves sophisticated personalized attacks on hundreds of thousands of customers, now likely millions. (Yesterday's Reuters article). The scary part of this is that the Ukranian thieves of Monster user data apparently weren't performing identity theft using that data; they were grabbing user info in order to custom-craft recruiter emails, which, if the job-seeker clicked on the links, would install malware on their computer (which would then perform identity theft).
So- if you've ever been associated with Monster, be very careful about any recruiter emails, even if they don't say they're from Monster; make sure your email reader won't run executable programs from links in the email.
I'm grumpy about how stupid this is, that thieves were able to get all this information; and expect they could go and do more fishy things with the data, besides sending these fake recruiter emails.
Of course I'm also grumpy about this since I do have a Monster account, but the particular scam seems less likely to cause problems for me since I did use a unique email address for Monster, and I also read Monster email in a non-GUI non-windows mail-reader.
Ugh.
So- if you've ever been associated with Monster, be very careful about any recruiter emails, even if they don't say they're from Monster; make sure your email reader won't run executable programs from links in the email.
I'm grumpy about how stupid this is, that thieves were able to get all this information; and expect they could go and do more fishy things with the data, besides sending these fake recruiter emails.
Of course I'm also grumpy about this since I do have a Monster account, but the particular scam seems less likely to cause problems for me since I did use a unique email address for Monster, and I also read Monster email in a non-GUI non-windows mail-reader.
Ugh.