We discovered that an unauthorized third party attacked our Jobs website and was able to obtain access to certain user IDs and e-mail addresses. No passwords or other personal information was affected. We are taking this incident very seriously. We quickly identified the vulnerability and shut it down, and are pursuing the matter with law enforcement. We sincerely apologize for this inconvenience.
The attack occurred in two brief episodes – once on June 27 and once on June 28.
Users whose e-mail addresses were accessed may receive some unsolicited emails (SPAM) as a result. Their Jobs accounts remain secure.
We do not know the exact number of individuals, but in total, roughly 1.27 million user IDs and e-mail addresses were impacted.
We quickly identified the attack and took action to shut it down. We also have implemented additional measures to prevent against a similar attack in the future, and we are pursuing the matter with law enforcement. In addition, we are conducting a thorough audit of the security of the Jobs site.
SPAM, aka. Junk Mail, is unsolicited mass e-mail. One especially serious form of SPAM is phishing, in which e-mails may ask users for sensitive personal information, such as credit card information, bank account information, passwords and ID numbers. Often, phishing e-mails try to trick recipients into disclosing such sensitive information by fraudulently pretending to come from reputable companies.
Most major e-mail service providers have SPAM filters which help reduce the amount of SPAM in your inbox. Check with your e-mail provider for more information. In addition: