Scouting for a new career can be stressful. Now imagine that, instead of a new role, you find that your resume data was exposed. That’s what job seekers using Pflegia’s services are dealing with.
The Cybernews research team discovered an open Amazon Web Services (AWS) cloud instance, often referred to as a “bucket” in the business, with over 360,000 files. The team deduced that the exposed files belonged to Pflegia.
Pflegia is a German recruitment platform that hires healthcare professionals for hospitals, nursing homes, outpatient services, and intensive care.
We’ve reached out to Pflegia to disclose the issue. While the company did not reply, the exposed server was quickly closed to the public. We contacted the company for comment but have not received a reply before publishing this article.
What kind of Pflegia user data was exposed?
The exposed AWS bucket held hundreds of thousands of files with sensitive information. Most of the files were user-submitted resumes with details such as:
If you want to know about potential risks resulting from data leak give a look at the original post at
https://cybernews.com/security/pflegia-recruiter-data-leak/
About the author: Vilius Petkauskas, Senior Journalist at CyberNews
Follow me on Twitter: @securityaffairs and Facebook and Mastodon
(SecurityAffairs – hacking, Secure Client)
Google addressed a Chrome's Password Manager bug that caused user credentials to disappear temporarily for…
The Internet Systems Consortium (ISC) released BIND security updates that fixed several remotely exploitable DoS…
Terrorist groups are increasingly using cyberspace and digital communication channels to plan and execute attacks.…
Progress Software addressed a critical remote code execution vulnerability, tracked as CVE-2024-6327, in the Telerik Report…
A critical flaw in some versions of Docker Engine can be exploited to bypass authorization…
The CVE-2024-21412 flaw in the Microsoft Defender SmartScreen has been exploited to deliver information stealers…
This website uses cookies.