Language Selection

English French German Italian Portuguese Spanish

Privacy watchdog warns job seekers to beware

Filed under
Security

Online fraudsters are increasingly taking advantage of vulnerable job seekers by using online résumés to steal their identity, a privacy expert warned this week.

The threats range from job fraud, where a criminal group poses as a legitimate employer to launder money, to the sale of résumé details to database companies for use in background checks. The seemingly small act of posting a résumé publicly can have significant impact: over the past year, more than a dozen Americans have been accused of a felony because their identity has been used for online crime, said Pam Dixon, executive director of the World Privacy Forum.

"If you post your résumé publicly you are asking for identity fraud," she said during an interview with SecurityFocus. "If you have a fantastic résumé, that puts you at a high risk, because your identity will get nabbed, and they will use your information to set up a new account in your name and do criminal acts and it will look like you participated in this scheme."

Ironically, the major résumé services offer tools to help job seekers keep their identity private from the public, but workers fail to take advantage of the features because they do not understand the dangers, Dixon said. However, a majority of résumé services still don't take the issues seriously, she added.

Dixon presented the findings of several studies authored by the World Privacy Forum at the Computer, Freedom and Privacy Forum last week in Seattle. In addition to identity-theft dangers, other privacy problems exist as well. She warned that inaccuracies in employment databases have hurt people's chances of getting the job.

The campaign to raise awareness of job fraud and inaccuracies in employment databases comes as major data leaks by companies such as ChoicePoint and Bank of America have raised public awareness of identity theft.

In a typical case of job fraud, for example, a criminal group will contact a job seeker offering employment handling money transfers. For each transfer -- usually of a sum just below the federally mandated $10,000 reporting requirement -- the "employee" gets to keep 5 percent.

Other criminal groups pose as employers and attempt to convince job seekers to give up sensitive information, such as social-security numbers and bank account information.

Full Story.

More in Tux Machines

Meaning of Convergence, Exploit Excludes Linux

The big news yesterday and even into today was the new Ubuntu tablet, which everyone including Canonical touted as "convergence delivered." Well, today Randall Ross scolds news sites for missing the "timely idea" that is convergence. In other news, security researchers have identified a new exploit that specifically avoids Linux. FOSS Force found that Linux users have no interest in anti-virus software and Phoronix reports on Ubuntu performance over the years. Read more

Tor Browser 5.5.1 Brings a Functional Private Anonymous Browser to Chinese Users

The Tor Project announced today, February 5, 2016, the immediate availability for download of the first point release for the Tor Browser 5.5 anonymous web browser for Linux, Mac OS X, and Microsoft Windows platforms. Read more

Ubuntu Linux in the Wild: How a French University Uses Unity

Is Canonical's Unity interface for Ubuntu Linux ready for use by the masses? Arguably, no. But the administration of the Ecole normale supérieure (ENS) in Paris apparently likes Unity well enough to deploy it throughout the university's library. The ENS is one of France's "grandes écoles," or elite universities. It also happens to have one of the only open-stack academic libraries in Paris, which is what brought me there this week. I was surprised upon entering to find that the workstations throughout the library now run Ubuntu (which was not the case when I was last there, circa early 2012). Here's proof: Read more

The trials of certifying open source software

Open source won and, over the past five years or so, we have been seeing the acceleration of a new wave of open source projects that got their starts in corporations. This comes with a set of new challenges, as new corporate participants struggle with some of the realities. Folks generally understand that foundations provide neutrality in some form, but don't necessarily know how to drive the competitive discussions from the room. One of the more disturbing symptoms of this confusion is the discussions beginning around "certification" and what it means to be certified to a particular project. What is Certified Good SoftwareTM? [1] Read more