Snafu exposes CVs and IDs of over 20,000 people

May 19, 2021

The AWS S3 bucket left exposed and unsecured by FastTrack Reflex Recruitment, now TeamBMS, was discovered by a Website Planet team. The company appears to specialise in hiring for the building management systems industry.

CVs with personal information such as email addresses, full names, cell phone numbers, home addresses, and social network URLs were among the 21,000 files in the 5GB database. According to Website Planet, other information included dates of birth, passport numbers, and applicant photographs.

Read More…