Slashdot Mirror

← Back to Stories (view on slashdot.org)

Chinese HR Firms Have Leaked Over 590 Million Resumes Via Open Databases (zdnet.com)

Posted by EditorDavid on from the job-openings dept.

An anonymous reader quotes ZDNet: Chinese companies have leaked a whopping 590 million resumes in the first three months of the year, ZDNet has learned from multiple security researchers. Most of the resume leaks have occurred because of poorly secured MongoDB databases and ElasticSearch servers that have been left exposed online without a password, or have ended up online following unexpected firewall errors.

Over the past few months, and especially over the last few weeks, ZDNet has received several tips about exposed servers that --when investigated-- belonged to Chinese HR-focused companies. From tiny firms exposing a handful of CVs to professional executive head-hunting firms, they've all leaked their customers' details, in one form or another... Counting all, we have 590.497 million resumes that have leaked from Chinese companies over the past three months, a worrying sign that Chinese HR companies are not taking the security of their servers seriously. The article points out that the resumes include personal information including phone numbers, home addresses, family and marital status, and in some cases, even ID numbers.

22 comments

  1. Enemy update memo by easyTree · · Score: 1

    China is this year's primary enemy. China === bad

    --
    Requiem for the American Dream
  2. Meanwhile... by phantomfive · · Score: 3, Interesting

    Meanwhile, Linkedin is known to have exposed employment information for millions of employees around the world. You can see this cache of employment information today, by going to the Linked-in search page.

    --
    "First they came for the slanderers and i said nothing."
    1. Re:Meanwhile... by rtb61 · · Score: 2

      You kind of missed the problem, those kind of details are more than sufficient to open a social media account, to post all kinds of rubbish, that will destroy the affected people, government mandated social media score. Want to see what kind of chaos those two together will bring, just wait a mo, it will happen. Revenge, espionage, the purposeful spreading of chaos, those HR companies have actively threatened and irreversibly damaged China's social media score system. They are in serious shite, they have opened the China up to espionage attacks on that social media score platform. Full panic mode is appropriate for that management.

      --
      Chaos - everything, everywhere, everywhen
  3. Meanwhile... retard falsely equivocates by Anonymous Coward · · Score: 1

    Linkedin is opt-in, so you're being retarded with the pseudo-whattaboutism there. Good work gumshoe.

    1. Re:Meanwhile... retard falsely equivocates by Anonymous Coward · · Score: 0

      You're being 100% retarded. You put your resume on either Linkedin or Office365, that's still opt-in, Einstein.

  4. We all know what this means. by Gravis+Zero · · Score: 2

    A bunch of Chinese admins are having their social credit score drop.

    --
    Anons need not reply. Questions end with a question mark.
    1. Re:We all know what this means. by Anonymous Coward · · Score: 0

      A CV is not exactly a secret or sensitive document...

  5. Re: China has HR firms? by Anonymous Coward · · Score: 2, Insightful

    I have yet to encounter an HR organization that treats employees as human.

  6. Re: Hitler's NAZI firm has leaked three SWASTIKAS by Anonymous Coward · · Score: 0

    Same thing. Equally appalled. Finally someone shares my opinion

  7. Re:Retarded anti-knowledge faggot update memo : by easyTree · · Score: 1

    I'm going to self-woosh you.

    --
    Requiem for the American Dream
  8. Au contraire mon frère... by Anonymous Coward · · Score: 0

    We are talking about China here.

    In all likelihood, the social credit score for these admins will probably go up for exposing the information of nearly 600 million people.