信息來(lái)源：開(kāi)源中國(guó)

根據(jù)安全站點(diǎn)HackenProof的報(bào)告，由于MongoDB數(shù)據(jù)庫(kù)沒(méi)有采取任何安全保護(hù)措施，導(dǎo)致共計(jì)202,730,434份國(guó)人求職簡(jiǎn)歷泄漏。其中，簡(jiǎn)歷中包含姓名、性別、生日、手機(jī)號(hào)碼、微信、學(xué)歷等各種隱私數(shù)據(jù)。

通過(guò)對(duì)比簡(jiǎn)歷的數(shù)據(jù)模式，發(fā)現(xiàn)GitHub項(xiàng)目xzfan/data-import(改項(xiàng)目已被刪除)疑似為收集這些簡(jiǎn)歷數(shù)據(jù)的爬蟲(chóng)。該爬蟲(chóng)會(huì)收集來(lái)自58同城等各個(gè)求職平臺(tái)的簡(jiǎn)歷。58同城否認(rèn)數(shù)據(jù)泄漏來(lái)自他們，認(rèn)為是第三方爬蟲(chóng)泄漏了簡(jiǎn)歷數(shù)據(jù)：

We have searched all over the database of us and investigated all the other storage, turned out that the sample data is not leaked from us. It seems that the data is leaked from a third party who scrape data from many CV websites.

目前，泄漏數(shù)據(jù)的MongoDB數(shù)據(jù)庫(kù)已經(jīng)無(wú)法訪問(wèn)，但是通過(guò)日志發(fā)現(xiàn)，有數(shù)十個(gè)IP曾經(jīng)訪問(wèn)過(guò)該數(shù)據(jù)庫(kù)，這意味著簡(jiǎn)歷數(shù)據(jù)可能已經(jīng)泄漏。