ADVERTISEMENT

5 million Adecco.com users’ data leaked

5 million Adecco.com users’ data leaked
Bernard Meyer
Bernard Meyer Senior Researcher
Mar 4, 2021 Updated: 7 December 2023 1 min read
  • Peru
  • Brazil
  • Argentina
  • Colombia
  • Chile
  • Ecuador

What data was included in the leak

  1. “Candidatos_datos_personales” (candidates’ personal data) with 4,543,938 lines:
    1. The candidate’s full name
    2. Gender
    3. Marital status
    4. Date of birth
    5. Country
  2. “Candidatos_candidatos_by_email” with 3,763,836 lines:
    1. The candidate’s full name
    2. Email address
    3. State
    4. ID and creation date
    5. Passwords (bcrypt hashes with a cost of 10, which is a strong hashing algorithm)
    6. Country
  3. “Candidatos_login” with 5,321,943 lines:
    1. Full name
    2. Gender
    3. Date of birth
    4. Country
    5. ID
    6. Marital status
ADVERTISEMENT
Sample of data from “candidatos_datos_personales”

What’s the impact of the leak?

  • Using the data for targeted spear phishing attacks
  • Collecting and spamming users’ emails and phones
  • Brute-forcing users’ other online accounts

What to do next

  • Change your passwords immediately. You should be using a unique password for each account you create. To help you with that, use a trusted password manager that can create really strong passwords you don’t need to remember.
  • Add two-factor authentication (2FA) on your most sensitive accounts, including your primary email account. That way, even if a bad actor were able to uncover your credentials, they wouldn’t be able to get into your account.
  • Watch out for suspicious emails, as they may be phishing attempts. Avoid clicking on links from suspicious emails.
  • Watch out for suspicious activity on your financial accounts, and set up identity theft monitoring.

Build your secure personal and business online presence


ADVERTISEMENT