eSecurity Planet: Massive Data Breach Exposes 4.8 Million Job Seekers’ Personal Info

March 27, 2017 — Massive Data Breach Exposes 4.8 Million Job Seekers’ Personal Info

Lisa Baergen, Director at NuData, comments on JobLink’s recent acknowledgement that a hacker exploited a vulnerability in its application code to view the personal information of job seekers across 10 states.


America’s JobLink (AJL), which works with state governments to provide information to job seekers across the United States, recently acknowledged that a hacker exploited a vulnerability in its application code to view the personal information of job seekers across 10 states.

The information exposed includes the names, Social Security numbers and birthdates of job seekers in Alabama, Arizona, Arkansas, Delaware, Idaho, Illinois, Kansas, Maine, Oklahoma and Vermont. According to the Idaho Department of Labor, as many as 4.8 million accounts may have been compromised nationwide.


Lisa Baergen, director of marketing at NuData Security, told eSecurity Planet by email that whenever personally identifiable information (PII) like this is compromised, the stolen data can be cross-referenced with data from other breaches to present an even greater threat.

“As a society, we’ve reached the point where every organization entrusted with PII should be constantly testing and hardening its external and internal defenses, and embracing more proactive, effective levels of defense such as consumer behavior analytics solutions, which can constantly validate legitimate users — even when the stolen but accurate credentials are presented,” Baergen said. “That would be the best way to help prevent the sorts of deceitful transactions and identify theft that otherwise may lie ahead for these unfortunate JobLink victims.”

For the complete article, go here.