信息來源：開源中國(guó)

根據(jù)安全站點(diǎn)HackenProof的報(bào)告，由于MongoDB數(shù)據(jù)庫沒有采取任何安全保護(hù)措施，導(dǎo)致共計(jì)202,730,434份國(guó)人求職簡(jiǎn)歷泄漏。其中，簡(jiǎn)歷中包含姓名、性別、生日、手機(jī)號(hào)碼、微信、學(xué)歷等各種隱私數(shù)據(jù)。

通過對(duì)比簡(jiǎn)歷的數(shù)據(jù)模式，發(fā)現(xiàn)GitHub項(xiàng)目xzfan/data-import(改項(xiàng)目已被刪除)疑似為收集這些簡(jiǎn)歷數(shù)據(jù)的爬蟲。該爬蟲會(huì)收集來自58同城等各個(gè)求職平臺(tái)的簡(jiǎn)歷。58同城否認(rèn)數(shù)據(jù)泄漏來自他們，認(rèn)為是第三方爬蟲泄漏了簡(jiǎn)歷數(shù)據(jù)：

We have searched all over the database of us and investigated all the other storage, turned out that the sample data is not leaked from us. It seems that the data is leaked from a third party who scrape data from many CV websites.

目前，泄漏數(shù)據(jù)的MongoDB數(shù)據(jù)庫已經(jīng)無法訪問，但是通過日志發(fā)現(xiàn)，有數(shù)十個(gè)IP曾經(jīng)訪問過該數(shù)據(jù)庫，這意味著簡(jiǎn)歷數(shù)據(jù)可能已經(jīng)泄漏。