Washington Post jobs site breached
The Washington Post has confirmed that an unauthorised third-party attacked its Jobs web site and obtained access to approximately 1.27 million user accounts. The attacks reportedly occurred in "two brief episodes" on 27 and 28 June.
According to the company, only user IDs and email addresses were affected; other information such as passwords and other personal details were not exposed. User's Jobs accounts are said to remain secure. The newspaper notes that users of the jobs site may receive increased amounts of spam and other unsolicited email, such as phishing messages.
In a statement, The Washington Post said: "We quickly identified the attack and took action to shut it down. We also have implemented additional measures to prevent against a similar attack in the future, and we are pursuing the matter with law enforcement. In addition, we are conducting a thorough audit of the security of the Jobs site."
Further information about the breach can be found in a security notice on The Washington Post web site.