Recruiter’s Cloud Snafu Exposes 20,000 CVs and ID Documents

Phil Muncaster reports:

Tens of thousands of jobseekers have had their personal information exposed by a misconfigured cloud account, according to researchers.

A team at Website Planet discovered the AWS S3 bucket left unprotected and unsecured by FastTrack Reflex Recruitment, now TeamBMS.

The firm apparently specializes in recruitment for the building management systems sector, for projects including skyscrapers 22 Bishopsgate and The Shard, Wembley Stadium and the Olympic Stadium, Heathrow Terminal 5 and Crossrail stations.

Read more on InfoSecurity.

About the author: Dissent

Comments are closed.