globalsecuritymag.fr

Job Platform Leak: Resumes, Emails, and More at Risk

Job Platform Leak: Resumes, Emails, and More at Risk - Malware Update

Mar 19, 2025 - 21:31

0

Job Platform Leak: Resumes, Emails, and More at Risk

Security researchers @ leakd.com uncovered a data leak affecting 15,000 users of TechMeetUps. A misconfigured Amazon S3 storage bucket left emails, resumes, phone numbers, and applicant photos publicly accessible.

Key Findings:

15,000 sensitive files were exposed due to an unprotected S3 bucket.

60,000 CVs publicly accessible, revealing:

Emails, password hashes, full names

Telephone numbers, mailing addresses

Social media profiles, citizenship status

Photos, personal remarks, employment history

Corporate data at risk: Internal workflow screen recordings and marketing materials are exposed, raising concerns over identity theft and intellectual property leaks.

Security Implications:

S3 misconfigurations are a common but critical oversight, allowing unauthorized public access to private files.

No encryption or monitoring means the data could have been accessed or exfiltrated unnoticed.

TechMeetUps has not responded to our disclosure, and the data remains exposed.

Why It Matters:

Highlights persistent cloud security risks affecting industries worldwide.

Raises privacy and data protection concerns for job seekers.

Shows how misconfigurations in cloud storage can lead to significant data breaches.

Tags :

Article précédent

Phishing via Firebase : une menace sous-estimée pour les entreprises

Article suivant

Trend Micro Incorporated annonce la mise à disposition en open-source de Trend C...

Articles similaires

Neterra Enhances Its Customer Service Monitoring System

Neterra Enhances Its Customer Service Monitoring System

Fév 18, 2025 0

Vigilance.fr - Apereo CAS Server : vulnérabilité via OAuth / OpenID Connect, analysé le 20/05/2024

Vigilance.fr - Apereo CAS Server : vulnérabilité via OA...

Fév 20, 2025 0

Vigilance.fr - IBM MQ: information disclosure via Console Technical Error Message 3, analyzed on 18/12/2024

Vigilance.fr - IBM MQ: information disclosure via Conso...

Fév 18, 2025 0

Ce site utilise des cookies. En continuant à naviguer sur le site, vous acceptez notre utilisation des cookies.