A recruitment site in Ireland has experienced a data breach, leaking around 400,000 email addresses in the process.
Recruit Ireland reported the breach yesterday, saying its website was taken down at around 2pm on Tuesday.
It has reported the incident to Ireland's Data Protection Commissioner and the police.
An investigation into the situation is currently ongoing.
"Indicators so far are that email addresses and names were compromised for spamming purposes," a message on the company Facebook page read.
"If you receive any emails please ignore. We apologise for any inconvenience caused."
Various members of the site have complained about being sent suspicious-looking emails.
Having shut the website down, Recruit Ireland reported late last night that it was up and running again.
"We are satisfied that following a thorough audit of the incident and the website users can now be confident that the full extent of the issues are understood and that their data is secure," a statement from the firm read.
Brian Honan of BH Consulting, who worked closely with the recruitment firm on auditing the site, said the issue of how the website was compromised had been dealt with.
"Additional measures have also been implemented to enhance the security of the website and we will continue to work with RecruitIreland.com to assure the security of the system," Honan added.
"Extensive testing of the website for any security weaknesses has also been conducted and the security of the website is in line with industry recognised standards."
Graham Cluley, senior technology consultant at Sophos, said it was a "ghastly situation" for the recruitment firm.
"Questions will no doubt be asked as to why the sensitive information was not held securely (was encryption being used?) and how it was possible for hackers to steal such valuable data," Cluley added in a blog.
"It isn't much consolation to the Irish workers who have had their details exposed in this hack, but this isn't the first time that cyber criminals have targeted recruitment websites."
-
What is polymorphic malware?Explainer Polymorphic malware constantly changes its code to avoid detection, making it a top cybersecurity threat that demands advanced, behavior-based defenses
-
Outgoing Kaseya CEO teases "this is just the beginning" for the companyOpinion We spoke to Fred Voccola who remains a key figurehead at the firm as it enters its next chapter...
-
96% of SMBs are missing critical cybersecurity skills – here's whyNews The skills shortage hits SMBs worse as they often suffer from a lack of budget and resources
-
Sophos Firewall Virtual review: Affordable network protection for those that like it virtualizedReviews Extreme network security that's cheaper than a hardware appliance and just as easy to deploy
-
MSPs are struggling with cyber security skills shortagesNews A shortage of tools and difficulties keeping pace with solutions were also ranked as key issues for MSPs
-
Nearly 70 software vendors sign up to CISA’s cyber resilience programNews Major software manufacturers pledge to a voluntary framework aimed at boosting cyber resilience of customers across the US
-
Sophos and Tenable team up to launch new managed risk serviceNews The new fully managed service aims to help organizations manage and protect external attack surfaces
-
Ransomware groups are using media coverage to coerce victims into payingNews Threat actors are starting to see the benefits of a more sophisticated media strategy for extracting ransoms
-
Shrinking cyber attack “dwell times” highlight growing war of attrition with threat actorsNews While teams are becoming more proficient at detecting threats, attackers are augmenting their strategies
-
Cyber security in the retail sectorWhitepapers Retailers need to ensure their business operations and internal data aren't breached
