Hacking is one more pressure bearing down on the big job boards…probably an intense one.
If you’re running a small niche board, you’re not much of a target – I’ve written about our struggles with hackers but those have always been directed at our content management system and not our job boards. From ZDNet.com:
Malicious hackers are exploiting a cross-site scripting flaw on
Yahoo’s HotJobs site to phish for Yahoo credentials, according to
a warning from Netcraft.In the ongoing attack, Netcraft discovered that the vulnerability
allows the attacker to inject obfuscated JavaScript into the affected
page to steal authentication cookies that are sent for the yahoo.com
domain.Simply visiting the malign URLs on yahoo.com can be enough for a victim
to fall prey to the attacker, letting him steal the necessary session
cookies to gain access to the victim’s email
Fortunately a fix was deployed within hours of notification.
