Security Experts:

Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Cybercrime

IT Job Board for Wall Street Hacked, 50k Exposed

ITWallStreet.com, a job board for IT talent looking to work in the financial district, was hacked on Wednesday – leaving some 50,000 users exposed. The attacker, going by Masakaki and claiming roots with TeamGhostShell, said the breach was part of a larger effort that focuses on financial institutions.

ITWallStreet.com allows users to “discreetly connect with Wall Street’s IT career community.”

ITWallStreet.com, a job board for IT talent looking to work in the financial district, was hacked on Wednesday – leaving some 50,000 users exposed. The attacker, going by Masakaki and claiming roots with TeamGhostShell, said the breach was part of a larger effort that focuses on financial institutions.

ITWallStreet.com allows users to “discreetly connect with Wall Street’s IT career community.”

ITWallStreet HackedThe compromised data was released under the heading MidasBank, which was explained in a statement as a set of leaks, “from an economical point of view, institutional and educational, but primary, it will focus on the financial aspect of things.”

“With that being said, what better target to pick as a first release, than the place that puts all markets to shame in the world. Wall Street. IT Wall Street owned. Around 50.000 accounts compromised. The list contains both current, past, and rejected IT personal from Wall Street. The information is as detailed as ever with many other surprises in it. Please, enjoy.”

The leaked data consisted of names, addresses, email addresses, poorly hashed passwords, and phone numbers. A file with records of calls between recruiters and candidates was also included, including a list of references. Interestingly, the client list for ITWallStreet.com was also leaked, listing such firms as NASDAQ, Dow Jones, Wachovia, Goldman Sachs, and Morgan Stanley.

For a brief period after the initial appearance of the hijacked data, ITWallStreet.com was offline. They returned after an hour or so of downtime, but neither the website, nor their parent – Andiamo Partners – makes mention of the breach.

While the released data is bad enough, the final comment released by Masakaki – signed Supporters of Occupy Wall Street – was the promise that over 3000 resumes “were held in by MidasBank to trade them on the black market.”

Written By

Click to comment

Expert Insights

Related Content

Cybercrime

Zendesk is informing customers about a data breach that started with an SMS phishing campaign targeting the company’s employees.

Cybercrime

The release of OpenAI’s ChatGPT in late 2022 has demonstrated the potential of AI for both good and bad.

Cybercrime

A new study by McAfee and the Center for Strategic and International Studies (CSIS) named a staggering figure as the true annual cost of...

Cybercrime

The FBI dismantled the network of the prolific Hive ransomware gang and seized infrastructure in Los Angeles that was used for the operation.

Cybercrime

Video games developer Riot Games says source code was stolen from its development environment in a ransomware attack

Cybercrime

CISA, NSA, and MS-ISAC issued an alert on the malicious use of RMM software to steal money from bank accounts.

Cybercrime

Chinese threat actor DragonSpark has been using the SparkRAT open source backdoor in attacks targeting East Asian organizations.

Cybercrime

Artificial intelligence is competing in another endeavor once limited to humans — creating propaganda and disinformation.