Follow Us

We use cookies to provide you with a better experience. If you continue to use this site, we'll assume you're happy with this. Alternatively, click here to find out how to manage these cookies

hide cookie message

Hacker breaches 50,000 accounts, posts data online

Data dump exposes names, addresses, salary info on job candidates

Article comments

A hacker today claimed to have broken into, a website for IT professionals seeking jobs or working with Wall Street firms, and exposed highly detailed data belonging to tens of thousands of job applicants.

As many as 12 data files containing detailed information on job applicants were publicly posted today after apparently being accessed from an ITWallStreet database by a hacker belonging to a group called TeamGhostShell.

A Computerworld inspection of the published data showed the first and last names, mailing addresses, email addresses, usernames, hashed passwords and phone numbers of what appear to be thousands of people who have applied for IT jobs with Wall Street firms. Many of the thousands of hashed passwords appear to have already been decrypted into their clear text form.

The data dump included details such as salary and bonus expectations of the job seekers and even feedback on specific candidates. One of the published files, for instance, contained snippets of email exchanges presumably between recruiters and account managers discussing the viability of certain candidates for specific jobs.

Profiles breached ranged from entry-level to senior management

Another file contained thousands of phone call records apparently between recruiters and candidates, containing details such as the phone number dialed, the time, date and duration of the call. One contained a list of references apparently supplied by the job candidates.

The salary expectations of job candidates ranged from $40,000 to more than $400,000 suggesting that ITWallStreet's breached resume database included everyone from entry-level IT professionals to senior technology executives. In fact, several of the published email exchanges referred to candidates who appeared to have applied for vice-president level positions at Wall Street firms.

One of the published files contained a detailed listing of what appeared to be hundreds of clients of The list contains virtually every major Wall Street firm including Morgan Stanley, Goldman Sachs, Nasdaq, Dow Jones, Moody's and Wachovia Bank.

Andiamo Partners, the New York-based recruiting firm that operates the website did not confirm or deny the breach. A spokeswoman said the company would respond later, presumably after verifying the claims. It was not immediately possible to confirm if any of the posted data came from the company's database or pertained to IT job applicants as claimed by the hacker.

3,000 CVs to trade on the black market

It was also difficult to immediately verify how many people may have been affected by the breach. According to "Masakaki," the hacker who claimed credit for the breach, more than 50,000 accounts pertaining to "current, past, and rejected IT personal (sic) from Wall Street" have been compromised. Masakaki claimed to have more than 3,000 resumes "to trade them on the black market."

In a statement announcing the breach, Masakaki suggested the attack was meant as a show of support for the Occupy Wall Street movement. The hacker claimed to belong to "MidasBank," a group that is part of TeamGhostShell, according to the statement.

"GhostShell has been leaking left and right all kinds of targets, well we're here to bring some sort of order to it which is why this district will function solely to provide leaks from an economical point of view," the statement noted. "What better target to pick as a first release, than the place that puts all markets to shame in the world. Wall Street. IT Wall Street owned," the statement read.

According to Andiamo's website, the firm is the leading technology recruiting firm for the financial services sector. The company helps Wall Street firms find IT staff in areas such as development, infrastructure, database and process management.


More from Techworld

More relevant IT news


RayW said: Another theft of very valuable data that could have been easily and inexpensively safeguarded through use of cryptoexpress All companies should take note it costs a fortune collecting IPR and it can be gone in nanoseconds without encrypted data storage

Send to a friend

Email this article to a friend or colleague:

PLEASE NOTE: Your name is used only to let the recipient know who sent the story, and in case of transmission error. Both your name and the recipient's name and address will not be used for any other purpose.

Techworld White Papers

Choose – and Choose Wisely – the Right MSP for Your SMB

End users need a technology partner that provides transparency, enables productivity, delivers...

Download Whitepaper

10 Effective Habits of Indispensable IT Departments

It’s no secret that responsibilities are growing while budgets continue to shrink. Download this...

Download Whitepaper

Gartner Magic Quadrant for Enterprise Information Archiving

Enterprise information archiving is contributing to organisational needs for e-discovery and...

Download Whitepaper

Advancing the state of virtualised backups

Dell Software’s vRanger is a veteran of the virtualisation specific backup market. It was the...

Download Whitepaper

Techworld UK - Technology - Business

Innovation, productivity, agility and profit

Watch this on demand webinar which explores IT innovation, managed print services and business agility.

Techworld Mobile Site

Access Techworld's content on the move

Get the latest news, product reviews and downloads on your mobile device with Techworld's mobile site.

Find out more...

From Wow to How : Making mobile and cloud work for you

On demand Biztech Briefing - Learn how to effectively deliver mobile work styles and cloud services together.

Watch now...

Site Map

* *