-
A dark web actor claims to possess 422,000 records from Saudi recruitment platform Mihnati, including full names, emails, phone numbers, passport details, and health information of job candidates.
-
The seller is offering the entire dataset for approximately $1,300 on underground forums, this highlights how recruitment platforms remain prime targets for data thieves.
-
Mihnati users need to promptly modify their passwords, remain alert to any potential phishing scams that may occur on the website, and establish a fraud alert on credit reports as precautionary measures against scams.
A dark web listing claims a major data breach at Mihnati, a well-known employment and recruitment platform in Saudi Arabia. The hacker is reportedly selling approximately 422,000 records, containing highly sensitive personal and professional information of job candidates.
Security researchers discovered the listing on underground forums, where cybercriminals trade stolen data. The breach allegedly exposes a wide range of information, such details could put affected individuals at serious risk of identity theft and fraud. Also, cybersecurity experts advise all Mihnati users to take immediate protective measures.
What Data Did the Alleged Breach Expose?
According to the dark web listing, the stolen dataset allegedly contains an extensive collection of personal and professional information. The compromised records include details, such as full names, email addresses, dates of birth, gender, mobile and landline phone numbers, physical addresses, region codes, and nationalities.
More concerning, the data reportedly includes highly sensitive identification documents. Passport numbers with issue and expiry dates also appear in the leaked files. This combination of information provides criminals with everything they need for identity theft.
The breach also allegedly exposed sensitive personal profile data. This includes height, weight, health problems, and physical disabilities of job candidates. Detailed work experience and regional employment breakdowns are also part of the compromised dataset.
The recruitment platform’s privacy policy states that job seekers share their CVs and personal documents expecting confidentiality; this alleged breach directly undermines that trust.
Another Saudi breach involved different sensitive assets. Hackers stole 40GB of source code and financial records from Mideast, showing how cybercriminals target both personal and corporate data.
How Much are the Stolen Records Selling for?
The dark web seller has a listed price of $1300 for the entire database that allegedly contains around 422,000 records. The details of the data include candidate profiles, candidate contact info, and employment history information.
The relatively low price could indicate that the seller would like to sell this quickly due to the risk of the media getting wind of the breach, or having the vulnerability patched through security updates before they can sell all the records. The seller seems to be negotiating with multiple buyers at the same time.
Cybersecurity experts see recruitment sites like Mihnati as valuable targets for cybercriminals due to the amount of personal information that they hold and how easily an attacker can monetize the information through various means. Having so much detailed information about a person increases the likelihood that a cybercriminal can conduct identity theft, phishing attacks, and social engineering successfully.
The breach of this recruitment website also highlights the risk associated with having all of their job applicants’ private information stored in a central location. This means any one party will have access to sensitive information, such as scanned copies of passports or medical records, as part of the application process, and will be able to easily sell or circulate the information on dark web forums for years after a breach.
What Mihnati Should Users Do Now
If you have ever used the Mihnati platform to hunt for a job or upload your resume, you need to protect yourself right now.
First, log in to the Mihnati website and change your password immediately. If you use that exact same password anywhere else, make sure you change it on those accounts too. Hackers love to take stolen passwords from one site and try them on dozens of others – this is a trick known as credential stuffing.
Second, keep a sharp eye on your inbox; cybercriminals who got their hands on your personal details can build incredibly realistic scam emails. Also, they might pretend to be a recruiter offering a great job, a government official, or even Mihnati support staff.
Third, consider putting a fraud alert on your credit file. This simple step makes it much harder for identity thieves to open up new loans or accounts in your name. While you are at it, pull a free credit report just to make sure there is no weird activity in your history.
Fourth, be on high alert if anyone reaches out of the blue about a job application. Scammers frequently offer fake job positions just to trick victims into giving up more cash or personal secrets.
The Saudi recruitment platform has not responded to requests for comment yet. Security researchers are still digging in to confirm if these dark web claims are real. Until there is an official confirmation, it is much better to play it safe and secure your accounts today.
