About 1.3 million user IDs and e-mail addresses on the jobs section of The Washington Post’s website were exposed after the site has fallen victim to a data breach last week, according to an online posting made by The Washington Post.
Although no passwords or other personal information were affected, people whose e-mail addresses were affected may receive junk e-mail, or spam, and should be wary of unsolicited e-mails that could be phishing attacks designed to steal passwords and other data.
“We are taking this incident very seriously. We quickly identified the vulnerability and shut it down, and are pursuing the matter with law enforcement. We sincerely apologize for this inconvenience,” according to the post.
The attack on the site occurred on June 27 and June 28, “in two brief episodes.” It notified users by e-mail Wednesday, while reassuring that the accounts on the site remain secure.