Ladders

Ladders, one of the most popular job recruitment sites in the U.S. learned of a cyber attack which left an Amazon-hosted Elasticsearch database exposed without a password, allowing anyone to access the data.

Each record included names, email addresses and their employment histories, such as their employer and job title.

The user profiles also contain information about the industry they’re seeking a job in and their current compensation in U.S. dollars.

More than 379,000 recruiters’ information was also exposed, though the data wasn’t as sensitive.

Source: https://techcrunch.com/2019/05/01/ladders-resume-leak/?guccounter=1&guce_referrer=aHR0cHM6Ly93d3cuaXRnb3Zlcm5hbmNlLmNvLnVrLw&guce_referrer_sig=AQAAAEekxKdiukfYkDMkK42myDQ71EzROpIGZ8Rl0fbd4vCX2pKH8r_3Pg6rtv6PaN8slrd3pUui5lx1xTb7Gyed_n4pYtx3dJUP_BBbi8MbWLUOF1QRBuqEByqDSZXGxdJbZgKlhLaRBC-dNsJdLc6vtws2dFFbBys0fTwZ9FEwY5Rw

"id": "LAD14620323",
"linkid": "ladders",
"type": "Data Leak",
"date": "05/2019",
"severity": "85",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"