Last Friday, Monster.com announced that their database had been attacked, and that account names, passwords, email addresses, and phone numbers had been stolen. Unfortunately, they haven’t sent out email alerts to anyone—they just put the announcement up on the security section of their site. As our tipster Erica points out, “Given people’s tendencies to reuse passwords on multiple sites (BAD!), that they aren’t actively emailing and informing members of this breach is quite irresponsible.”
Monster says the next time you log in, you’ll be asked to change your password. In the meantime, we say if you use the same password on Monster that you use elsewhere, STOP DOING THAT and
1. Change your passwords everywhere;
2. Use a different password for each site (or at *least* for your most important accounts).