[Sigia-l] Practical question for Monster users

Susan Doran susandoran at hotmail.com
Thu Aug 30 13:15:03 EDT 2007 

Hi,

This morning rec'd Monster's eating-major-crow-security-debacle email (see 
below), followed 8 minutes later by my first phishing email from a fraud 
Monster.  Man, shareholders must be jumping ship!

I use dice but also have a Monster profile. Any Monster users here deleting 
their accounts? Or has the horse already left the barn and no need to 
bother?

Thanks,
Susan

...........................
Dear Valued Monster Customer,

Protecting the job seekers who use our website is a top priority, and
we value the trust you place in Monster. Regrettably, opportunistic
criminals are increasingly using the Internet for illegitimate
purposes. As is the case with many companies that maintain large
databases of information, Monster is from time to time subject to
attempts to illegally extract information from its database.

As you may be aware, the Monster resume database was recently the
target of malicious activity that involved the illegal downloading of
information such as names, addresses, phone numbers, and email
addresses for some of our job seekers with resumes posted on Monster
sites. Monster responded to this specific incident by conducting a
comprehensive review of internal processes and procedures, notified
those job seekers that their contact records had been downloaded
illegally, and shut down a rogue server that was hosting these records.

The Company has determined that this incident is not the first time
Monster's database has been the target of criminal activity. Due to
the significant amount of uncertainty in determining which individual
job seekers may have been impacted, Monster felt that it was in your
best interest to take the precautionary steps of reaching out to you
and all Monster job seekers regarding this issue. Monster believes
illegally downloaded contact information may be used to lure job
seekers into opening a "phishing" email that attempts to acquire
financial information or lure job seekers into fraudulent financial
transactions. This has been the case in similar attacks on other websites.

We want to inform you about preventive measures you can take to
protect yourself from online fraud. While no company can completely
prevent unauthorized access to data, we believe that by reaching out
to job seekers like you, the Company can help users better defend
themselves against those who have attacked Monster as well as other
databases.

We are committed to maintaining an ongoing dialogue with all of our
job seekers about Internet security and the steps Monster is taking to
protect its job seekers. The Company has placed a security alert on
Monster sites offering information to educate you about online fraud.
This information can be found at http://help.monster.com/besafe/. We
have also included information on Internet safety and examples of
fraudulent "phishing" emails at the bottom of this letter.

Monster has launched a series of initiatives to enhance and to protect
the information you have entrusted to us. Some of these steps are
being immediately implemented, while others will be put into place as
appropriate.

We believe these actions are the responsible steps to protect the
trust you place in Monster. We are also working with Monster's
hundreds of thousands of employer customers to ensure a safe and
effective online job search. We will continue to share information
with you about the enhancements we are making as we serve as your
online career resource partner. We invite you to keep reading to learn
more about how to use the Internet safely.

Sincerely,

Sal Iannuzzi
Chairman and CEO
Monster Worldwide

_________________________________________________________________
More photos, more messages, more storage—get 2GB with Windows Live Hotmail. 
http://imagine-windowslive.com/hotmail/?locale=en-us&ocid=TXT_TAGHM_migration_HM_mini_2G_0507

More information about the Sigia-l mailing list