Summary:

A hacker group called ResumeLooters stole personal data from over 2 million job seekers across 65 websites, mainly in Asia but also affecting others in the US, Europe, and South America. They used SQL injection and cross-site scripting (XSS) attacks to access names, phone numbers, emails, and dates of birth, as well as information about job seekers’ experience, employment history, and other sensitive personal data, which is now being sold online. Be cautious about what information you share online and consider checking your digital footprint for potential exposure.

The attacks primarily focused on the Asia-Pacific (APAC) region, targeting sites in Australia, Taiwan, China, Thailand, India, and Vietnam. However, other compromised companies were located in other regions, including Brazil, Italy, Mexico, Russia, Turkey, and the US.