Washington Post's Jobs Section Hacked; 1.27 Million User IDs and E-mail Addresses Taken

The Washington Post announced that on two days last week—27 and 28 June—the jobs section of its website was hacked, and some 1.27 million user IDs and e-mail addresses were taken. The Post's jobs site "allows users to search job listings and post résumés," the paper says. The Post's FAQ page regarding the hack, however, says no passwords or other pieces of personal information were stolen.

The Post said it took until late Wednesday to reveal the attack because it needed time to "investigate the attack, retest the site’s security systems, and discuss the matter with law enforcement."

The Post's spokeswoman Kris Coratti further explained: "We wanted to make sure that we had a complete understanding as to what had happened and the potential consequences so that we could provide our customers with information that was as accurate and helpful as possible."

The Post states that it "sincerely apologize[s] for this inconvenience" and is pursuing the incident with law enforcement.

PHOTO: iStockphoto


Risk Factor

IEEE Spectrum's risk analysis blog, featuring daily news, updates and analysis on computing and IT projects, software and systems failures, successes and innovations, security threats, and more.

Robert Charette
Spotsylvania, Va.
Willie D. Jones
New York City