Misconfigured Azure Blob container spills nearly 26 million resumes, exposing job seekers’ data.

Cybernews researchers discovered a misconfigured Microsoft Azure Blob storage container belonging to TalentHook that exposed almost 26 million CV files with full names, home addresses, email addresses, phone numbers, education details, and employment history. The leaked information enables tailored phishing, identity theft, doxxing, and fake job-offer scams. Security experts recommend that TalentHook lock down public access, enforce stringent permissions and encryption, audit access logs, and adopt regular cloud-security best practices to contain and prevent such breaches.

Read more:

https://cybernews.com/security/talenthook-data-leak-exposes-millions/