MyJob.ie gets Hacked!
The Jobs website Myjob.ie, which allows people to upload their CVs online, has been the subject of a security breach.
The company has written to users to inform them of a “recent” security breach on its servers, which it says was quickly identified.
The breach did not come to the attention of the Data Protection Commissioner until yesterday, even though the company said two people had already been arrested.
In an e-mail to users whose personal data was potentially compromised, company director John Doupe said the two people were the subject of a file being prepared for the DPP.
“Although Myjob.ie was not the primary source of the breach . . . we would ask all users to immediately change their password,” wrote Mr Doupe. He asked users not to use the same password for more than one internet service and apologised for “any inconvenience or distress caused by this precautionary e-mail”.
It is understood gardaí contacted Myjob.ie on foot of material found on computers seized in raids in Galway and Offaly on September 1st. Two teens were arrested by gardaí investigating a cyber attack on the Fine Gael website. The two were subsequently released without charge.
Information security consultant Brian Honan, who was notified about the breach as a registered user of the site, questioned the company’s data retention policy. Mr Honan said he had not used the website for “well over 10 years”, so the data held would be “well out of date and no longer useful. The attackers have already been arrested and a file sent to the DPP. If this is the case, when did the breach originally occur and why did it take so long to notify those impacted?”
The commissioner says incidences of personal data being put at risk should be reported to his office within two working days.
The website is the online recruitment arm of Bond Personnel. It has offices in Malahide, Co Dublin and Athlone, Co Westmeath.
This is an article from the Irish Times, I do not own rights to it, I just thought people should know.