Original URL: https://www.theregister.com/2010/05/28/mirror_job_hack_attempt/

UK jobs site suffers hack attack

3.5 million CVs exposed

By John Oates

Posted in Security, 28th May 2010 07:02 GMT

Several job sites run by Trinity Mirror Group have suffered hack attacks, although the newspaper group does not believe any CVs were copied or accessed.

JobSearch.co.uk and jobs.mirror.co.uk both suffered hack attacks on 19 May. Blog posts described a "concerted and sophisticated attempt to hack into user accounts".

As a precaution Trinity Mirror suspended all user accounts and issued new passwords. The post also warned people to change passwords if they were using them on multiple sites.

A spokesman for Trinity Mirror said: "The attacks were on dormant, not current, accounts and did not get beyond log-in details - no CVs or other personal information was accessed. We informed the ICO as a matter of courtesy."

He said they did not where the attack originated from.

Subscribers should also have received an email warning them of the breach.

Trinity Mirror Group - which runs ailing red-top the Mirror as well as a stable of local newspapers - claims 3.5 million users for its CV sites which include totallylegal, PlanetRecruit, The Career Engineer, Secsinthecity (groan) and GAAPweb - for finance and accountancy staff.

The full blog posts are here. ®