digg

Facebook Connect Join Digg About

Monster.com Attacked By Hackers Again!

business2press.com Monster.com was attacked by hackers again. Monster is recommending that all users change their passwords and be on the watch for phishing emails.

Who dugg this? Made popular Jan 26, 2009

Digg DudeWhat is Digg?

Digg is a place for people to discover and share content from anywhere on the web. Digg surfaces the best stuff as submitted and voted on by the community. Take the Tour to learn more.

96 Comments

show profanity settings
expand all
  • mofw, on 01/25/2009, -1/+61Sounds like the hackers need a job
  • Shaggy6ster, on 01/26/2009, -0/+57In other news, Hackers.com attacked by monsters!
  • Aeaus, on 01/26/2009, -1/+47Why do I need to find out about this through digg and not through an email coming to my account telling me to change my password?
  • WafflePirate, on 01/25/2009, -1/+34Well that's got to suck. Maybe they should invest in better security, maybe hire a couple of hackers for protection. Now that they've been targeted twice, it'll happen a third time most likely.
  • cerealjynx, on 01/26/2009, -0/+23Hackers play hackey sack. Crackers are tasty.
  • insomniac8400, on 01/26/2009, -0/+22Maybe they should stop storing passwords in their database and start hashing.
  • ChinezePanda, on 01/26/2009, -0/+21Next Monster.com job listing.

    Employer: Monster.com Inc.

    Position: Level 9 System Securities Admin.

    Pay: Whatever we can afford at this point.. our stock is rapidly declining and shareholders are jumping ship like men off the Titanic
  • hawksfan03, on 01/26/2009, -3/+23windows has nothing to do with this
  • extravagant, on 01/25/2009, -1/+21no surprise here, their database is extremely valuable so its obvious people would try to take advantage.... they should better protect their systems though
  • miggyb, on 01/26/2009, -0/+18The CIA trained him, you know. You're not that far off from reality.
  • HiImFromReddit, on 01/25/2009, -1/+18Well, at least they don't have to go far to advertise for techies to improve their security.
  • diggface5000, on 01/26/2009, -0/+14I know! They had a little message on their website, but it's not like I visit Monster everyday. I heard about it here and looked for confirmation on the website. A lot of people who signed up previously and forgot about it might appreciate a quick email informing them of the problem.
  • billbugger, on 01/26/2009, -0/+10That's like offering Bin Laden a job as an Army General.
  • sockpuppets, on 01/26/2009, -0/+10Maybe they should just hire the guy that's hacking them.
  • samurimaster, on 01/26/2009, -11/+21The persons who made the attack, are not hackers, they are crackers. Hackers do not steal or attack, crackers do.
  • zantos420, on 01/26/2009, -1/+11a network admin trying to find flaws in his system so he may fix them is a hacker;
    a network admin trying to find flaws in someone elses network so he may exploit them is a cracker.

    i don't know why people are digging you down samurimaster you're absolutely right; i think people just like calling themselves 'hackers' because it sounds cooler than 'crackers'
  • Quiks, on 01/26/2009, -0/+9Actually no, it is not "windows" that was vulnerable. It was a browser called internet explorer. I can go on ANY site with the browser that I use and never have anything happen to me. Just because users are retarded, it doesn't mean the operating system is at fault. So what I gain from this is "Don't use windows if you don't know anything about computers. Just buy a MAC".
  • GLeNs, on 01/26/2009, -0/+9Your so lonely
  • insomniac8400, on 01/26/2009, -0/+9@heartsblood

    That sounds like an IE vulnerability.
  • phpirate, on 01/26/2009, -2/+11WHO YOU CALLIN A CRACKA?
  • idavidtang, on 01/26/2009, -1/+10M-M-M-MONSTER HACKED.
  • wontstoptalking, on 01/26/2009, -0/+8Maybe they're recommending Monster.com hires them so they can fix their ***** security?
  • asnider, on 01/26/2009, -0/+8You realize, of course, that it's actually fairly common for large companies to hire "ex-hackers" to work in their security departments, right? Sometimes they're on staff and other times they're just consultants, but it's fairly common.
  • spookyttws, on 01/26/2009, -1/+9Seems like they need to seriously revamp their security department. All of their users data should not be that easily hacked, or at least not stored in such a concentrated manner.
  • Biscuitz, on 01/26/2009, -0/+7Stereotype much? Not all hackers are horrible liars and thieves, and bad people.
  • barnis, on 01/26/2009, -0/+7Its funny because the just launched a new version of their site a week or so ago...its no big improvement if you ask me but i guess they left a few holes...ooops
  • inactive, on 01/26/2009, -1/+8Or... change the password from "password" to something more secure. haha
  • heartsblood, on 01/26/2009, -7/+13"In 2007, hackers again attacked Monster.com with malicious ads that even if not clicked, still installed malicious code on the local machine and stole personal information from Monster."

    Only windows is vulnerable to this particular attack style.
  • arkaycee, on 01/26/2009, -0/+6"Watch out for phishing emails." You mean I might get 40 a day, rather than 35 a day? *shudder*.
  • LonelyTylenoL, on 01/26/2009, -0/+6I just saw a commercial for them that said they have a brand new and improved website.

    lqtm...
  • ChinezePanda, on 01/26/2009, -0/+6/high five
  • dagr8tim, on 01/26/2009, -0/+5This was the final excuse for me to cancel my account. I've not used it to search for a job in nearly 2 1/2 years.
  • IHaveIssues, on 01/26/2009, -1/+6"Only windows is vulnerable to this particular attack style"

    Do you mean IIS? I doubt the server is running the entreprise website on a client OS.
  • vibrokatana, on 01/26/2009, -0/+5@IHaveIssues, Monster runs on IIS:

    http://uptime.netcraft.com/up/graph?site=monster.c ...
  • warder, on 01/26/2009, -0/+5Please note that it is actually impossible to get off the Monster email lists if you ever sign up.

    My account has been 'deleted' by me and by them, I have emailed them, used the online chat with their support. Talked on the phone. And yet still I periodically receive 'system' emails from them.

    They truly are a 'Monster'.

    Give these people your details at your own risk. And to top it off, they let your information out through a security breach. Great work!
  • j3ff86, on 01/26/2009, -1/+6What y'all wanna do? Wanna be hackers? Code crackers? Slackers. Wastin' time with all the chatroom yakkers?
  • cawpin, on 01/26/2009, -1/+6Using Windows has nothing to do with it.

    Edit: And, again, I ask Digg...WTF is up with the comments? Since the last update they haven't been loading correctly. Responses only show after I submit my own, which leads to duplicate comments as in this case.

    FIX IT.
  • altgeeky1, on 01/26/2009, -0/+5Yes, that would be as terrifying as using someone else's OS, kernel, and libraries. Best to write everything yourself... that's not worked so great for all the sites who tried to invent their own crypto, et c...
  • bhellman1, on 01/26/2009, -0/+4Do people even use Monster anymore? I haven't heard of anyone using Monster in years. Their site is full of job spam.
  • briLo, on 01/26/2009, -0/+4“we recently learned our database was illegally accessed and certain contact and account data were taken, including Monster user IDs and passwords, email addresses, names, phone numbers, and some basic demographic data.”

    That's an easier way of saying everything.
  • phpirate, on 01/26/2009, -1/+5Sounds like Monster.com needs to hire better website programmers. Luckily they won't have to go far.
  • insomniac8400, on 01/26/2009, -1/+5If you don't dump the garbage file, how will anyone know you did it?
  • FredFredrickson, on 01/26/2009, -1/+5I haven't used Monster.com for years. The site is so riddled with ads and deceptive links that it's just not worth the headache.
  • JamesMorris, on 01/26/2009, -0/+3***** sake i've got an account on there from over 2 years ago, idiot's need to work on their security.
  • MasterPain, on 01/26/2009, -0/+3All I ever got from monster & career builder was tons of penis enlargement spam & temp agencies annoying me. I did actually find a job because of a craigslist post.
  • stellamaris, on 01/26/2009, -0/+3I just signed up a few weeks ago because I'm going to start looking for a job when I graduate. I've found less spam, and more legitimate offers, on CraigsList than Monster. It's a scam aggregator, just like FastWeb.
  • mahilo, on 01/26/2009, -0/+3I should delete my Monster account as well. Indeed scary.
  • hazello, on 01/26/2009, -0/+3I wish they'd attack Monster Cable instead. (please don't sue me for saying that!)
  • webgodjj, on 01/26/2009, -0/+3Seems like an even simpler approach is better... Just cancel your account. I did!
  • painting, on 01/26/2009, -0/+3monster.com sucks hacked or not. All you get is spam.
  • Fetching more discussions...
    Show 51 - 100 of 101 discussions

  • Add a Comment

    Login or register to comment!
    Or, sign-in super fast with your Facebook account ...


© Digg Inc. 2009 — Content created and posted by Digg users is dedicated to the public domain | Terms of Use Updated | Privacy Policy
DIGG, DIGG IT, DUGG, DIGG THIS, Digg graphics, logos, designs, page headers, button icons, scripts, and other service names are the trademarks of Digg Inc.