Technical

Monster: Millions of users’ data may have been stolen

Posted by  Reuters

The theft of contact information for job seekers in the database of Monster Worldwide may have been much greater than the 1.3 million individuals reported earlier this month, Chief Executive Sal Iannuzzi said on Wednesday.

While investigating the recent theft, the company learned that its Web site had previously been hacked. “We’re assuming it is a large number. It could easily be in the millions,” Iannuzzi said in an interview with Reuters. To be safe, he said, each Monster.com user should assume that his or her contact information has been taken.  The company said earlier that the theft of confidential information was not an isolated incident, and said the scope of illegal activity was impossible to pinpoint. Monster is stepping up surveillance of site traffic, boosting its security staff, and is contacting users about ways to protect their privacy. “I want to be clear and I want to be frank: there is no guaranteed fix,” Iannuzzi said. “I wish I could say…there will be absolutely no way that the Monster site can be compromised. I cannot ever make that promise, and no Internet company can.”

So far, the company has found no evidence that the data thieves were able to take financial information, he said.

About 200 to 300 job seekers have canceled their accounts as a result of the security issue, the CEO said, but those have been offset by an upswing in new accounts. A “handful” of employers have canceled their accounts, Iannuzzi said. The company, which said last month it would invest $80 million to $100 million over 18 months to improve its technology, will dedicate “a large measure of that money” to fixing the security issue, Iannuzzi said.  Monster shares closed Wednesday up $1.24, or 3.8 percent, to $34.15 on the Nasdaq. Its shares were little changed in extended trading.

Apple unloads torrent of patches, plus the first iPhone update

Posted by Tom Krazit

If you own a Mac or an iPhone, chances are you’ll need to download at least one of the security updates issued by Apple late Tuesday.

Dozens of vulnerabilities and bugs were covered by a total of six downloads for Mac OS 10.3.9 (Panther), Mac OS 10.4.10 (Tiger) on PowerPC, and the Universal version of Mac OS 10.4.10, as well as the server versions of each of those operating systems. Each download contains several patches to correct flaws, and Apple is recommending that all users of those operating systems download the updates.Some of the vulnerabilities seem quite serious, leading to arbitrary code execution, downed applications or both.

 You can download the updates for your specific Mac at Apple’s support Web site or by clicking on the “Software Update” selection under the Apple menu. Apple also issued the first software update for the iPhone as part of Tuesday’s releases. Unlike the Mac updates, the iPhone update will be delivered through iTunes the next time you sync your iPhone with your Mac or PC. It corrects a few flaws in Safari as well as in Webcore and Webkit, apparently the iPhone versions of some flaws Apple fixed for Mac users of Safari back in June.Finally, Apple also released a new version of Safari 3.0, which is still in beta.

The new version, Safari 3.0.3, fixes some security flaws for both the Windows and Mac OS versions of the browser.The flood of patches comes as the security community is gathered in Las Vegas for the annual Black Hat conference.

For more info : Click here

Leave a Comment

Required

Required, hidden

Some HTML allowed:
<a href="" title=""> <abbr title=""> <acronym title=""> <b> <blockquote cite=""> <cite> <code> <pre> <del datetime=""> <em> <i> <q cite=""> <strike> <strong>

Trackback this post  |  Subscribe to the comments via RSS Feed