A recent data breach has exposed the personal information of more than 200,000 job seekers in the tech sector, revealing sensitive records such as names, phone numbers, email addresses, passport numbers, and visa statuses.
Cybersecurity researcher Jeremiah Fowler reported the unsecured database to Website Planet, which found it tied to New Jersey-based Alltech Consulting Services, a company that connects tech talent with employers across the U.S. and Canada.
Unprotected Database Left 2.3 Million Records Vulnerable
The unprotected database held a staggering 2.3 million records and included personal and professional details of tech professionals. It was organized into folders labeled “Documents,” containing job seekers’ personal data and internal notes on work history, skills, and job preferences. Alarmingly, the files also included employer details, including contact information, salary expectations, and visa statuses, such as H-1B visas for specialized workers.
After being alerted, Alltech Consulting Services quickly restricted public access to the database, but it remains unclear how long it was exposed or if others accessed it.
