InfoJobs

InfoJobs operates as an online employment portal headquartered in Spain, serving as a platform where job seekers can create profiles, upload curriculum vitae and professional information, and connect with potential employers. The service facilitates the recruitment process for companies seeking talent while providing candidates a digital space to market their skills and experience. Its core function is the matching of job opportunities with applicant profiles, making it a significant player in the Spanish online job market. The platform handles substantial volumes of personal and professional data submitted by its users, including employment history, educational credentials, and contact details, which constitutes a valuable target for cybercriminals.

In 2025, InfoJobs experienced two documented cyberattacks, both occurring on June 1st and November 1st, where adversaries employed credential stuffing techniques. This method involves using lists of usernames and passwords compromised from previous, unrelated data breaches to attempt unauthorized access to accounts on the platform, exploiting the common practice of password reuse. The attacks succeeded in breaching user accounts, leading to the theft of a significant quantity of data, specifically information that candidates had uploaded to their professional profiles. Following the intrusions, InfoJobs initiated a process to notify affected individuals and implemented enhanced monitoring and security protocols across its systems to detect and prevent further unauthorized activity. The stolen data is recognized as a valuable resource for criminal enterprises, enabling identity theft scams such as fraudulent job offers that solicit additional sensitive information or phishing campaigns that impersonate legitimate companies to deceive victims. The company's public communications highlighted the responsibility of users to avoid reusing passwords across services, while simultaneously reinforcing its own defensive measures against automated login attacks. These incidents underscore the persistent threat of credential-based attacks against online service providers and the cascading risks posed by large-scale credential compromises from other breaches. The repeated nature of the attacks within the same year indicates an ongoing challenge in mitigating this specific threat vector despite the deployment of additional security controls.