OPM warns job site users after breach
Officials at USAJobs.gov and Monster. com believe last week’s security breach was not the first time their system has been targeted by scammers, and they are warning users to be on the lookout for follow-up phishing scams.
Last week, officials from the companies discovered a malicious software tool being used to steal information from USAJobs.gov applicants, according to officials from the U.S. Office of Personnel Management.
OPM officials estimate 146,000 people may have been affected by the Infostealer.Monstres program, which accessed the site’s database to capture names, addresses, phone numbers and e-mail addresses of applicants.
But agency and Web site administrators do not believe the malicious program captured any Social Security numbers. The OPM database was not affected by the attack.
Investigators said the information was stolen by an individual or group using legitimate employer credentials, but would not provide further details. OPM officials said that upon discovering the information theft, Monster.com security experts blocked the program, closed the intruder’s site accounts, and worked with law enforcement.
Anyone who receives a suspicious e-mail regarding USAJobs.gov is instructed not to reply to or download from the message, and is instead requested to forward it intact to email@example.com.