Career121 Data Breach Exposes 94,393 Singapore Job Seeker Credentials

In August 2018, Career121, a Singapore-based employment platform, suffered a data breach that exposed the account information of 94,393 users. The breach involved both a database compromise and subsequent combolist distribution, with email addresses and plaintext passwords circulating in underground forums. Employment platforms handle professional contact information for job seekers, recruiters, and employers -- making the exposure of plaintext credentials from Career121 a serious threat to users across Singapore and the broader Asia-Pacific employment market.

Why This Is Dangerous

Plaintext password storage is one of the most severe security failures a platform can make. Every credential in this dataset was immediately actionable by any attacker who obtained it -- no cracking, no decryption, no additional tools required. The 94,393 email and password pairs from this breach can be tested against professional networking platforms, corporate email systems, banking portals, and social media accounts using automated credential stuffing tools that run thousands of attempts per minute. Employment platform users often use professional email addresses tied to their current employer, meaning a successful credential stuffing attack based on this breach could compromise corporate accounts as well as personal ones. Users who reused thier Career121 password elsewhere remain at risk until they change it across every platform where they applied the same credential.

What Was Exposed

• Email addresses for 94,393 Career121 user accounts
• Plaintext (unencrypted) passwords stored without hashing or salting
• Account data associated with the Career121 Singapore employment platform
• Credentials compiled into combolists and distributed across dark web forums

Why This Matters

Employment platform users in Singapore and across Southeast Asia represent a professionally active demographic with access to corporate systems, business email, and financial accounts. Credentials from employment platforms are particulary attractive to attackers because users often register with their primary work or professional email address and frequently recieve no indication that thier account has been compromised until damage has already occured. The Career121 breach data has been circulating in underground repositories since 2018 and continues to appear in active credential stuffing datasets. The scale of the breach -- nearly 94,400 records -- makes it a significant contributor to the combolist ecosystem targeting the Asia-Pacific region, where credential stuffing attacks against professional and financial services continue to grow.

How Database and Combolist Breaches Work

A database breach typically occured when an attacker exploited a vulnerability in the target web application -- such as an SQL injection flaw, a server misconfiguration, or compromised administrative credentials. Once inside Career121's systems, the attacker extracted the user database containing email addresses and plaintext password fields. Because the passwords required no further processing, the full dataset was immediately weaponizable. The extracted records were formatted into a combolist, a structured file used by automated tools to test credentials across hundreds of websites simultaneously. These combolists get bundled with data from other employment and professional platform breaches, creating targeted repositories used in credential stuffing campaigns that focus on professional users in the Asia-Pacific region.

Check If You Are Affected

If you ever registered an account on career121.com to search for jobs or manage professional listings, your email address and password may be part of this breach. Take action immediately:

• Search your email address in HEROIC's breach database to confirm whether your Career121 credentials were exposed
• Change the password you used for Career121 on every other platform where you have used the same password
• Enable two-factor authentication on your professional email account and any career or networking platforms you use
• Monitor your email and professional accounts for unauthorized login attempts, messages, or profile changes
• Use a password manager to generate and maintain unique passwords for each account you hold
• Be alert to phishing emails that reference job opportunities, recruitment, or employment services in Singapore or Southeast Asia

HEROIC provides continuous breach monitoring and alerts you in real time when your credentials appear in newly discovered datasets. Proactive monitoring is one of the most effective measures you can take to detect credential exposure early and respond before attackers can exploit your professional and personal accounts.