INFRA
INFRA
INFRA
California voter registration data stolen after newspaper left database exposed
Databases detailing 19.5 million Californian voter records as well as 53,000 newspaper subscribers have been stolen after a newspaper left both files exposed online.
The leak from The Sacramento Bee, reported today, was discovered by the Kromtech Security Center, which found a 91.5-gigabyte MongoDB database file Jan. 19 via a breach report based on Shodan, an “internet of things” search engine. The data detailed a wide variety of information compiled by the newspaper, such as legislation data, letters to the editor, internal newspaper systems info such as web site addresses, internal keys, user agents info and administrative credentials — but most importantly, the details of 19,501,258 California registered voters.
The SacBee discovered the exposure Jan. 29 when a developer noticed an error while attempting to upload data to one of the organization’s databases. That error, according to Bleeping Computer, consisted of the data being encrypted with a ransom demand for bitcoin if the newspaper wanted the data back.
The newspaper did not pay the ransom and deleted the databases instead, saying that the data had become accidentally exposed after a firewall did not come back online following routine maintenance by an outside service provider earlier in January.
While the loss of the subscriber data may be damaging to the SacBee, the voter registration data is replaceable as it was originally provided by the California state government, be it that the distribution of the data is somewhat restricted.
Citing SacBee’s lack of security oversight as being a lesson to be learned by all sorts of companies, Brian Contos, chief information security officer of Verodin Inc., told SiliconANGLE that it’s “critically important for organizations to continually measure and improve the effectiveness of their security controls and move beyond assumption-based security.”
Contos said there’s a “natural degradation that occurs in all IT environments as it relates to changes in security controls, network segmentation, patches and the like that can introduce unknown risk.” As a result, he added, “it’s key that the security controls protecting critical systems be fine-tuned for each specific environment to mitigate threats like ransomware.”
Photo: hjl/Flickr
A message from John Furrier, co-founder of SiliconANGLE:
Support our mission to keep content open and free by engaging with theCUBE community. Join theCUBE’s Alumni Trust Network, where technology leaders connect, share intelligence and create opportunities.
- 15M+ viewers of theCUBE videos, powering conversations across AI, cloud, cybersecurity and more
- 11.4k+ theCUBE alumni — Connect with more than 11,400 tech and business leaders shaping the future through a unique trusted-based network.
About SiliconANGLE Media
SiliconANGLE Media is a recognized leader in digital media innovation, uniting breakthrough technology, strategic insights and real-time audience engagement. As the parent company of SiliconANGLE, theCUBE Network, theCUBE Research, CUBE365, theCUBE AI and theCUBE SuperStudios — with flagship locations in Silicon Valley and the New York Stock Exchange — SiliconANGLE Media operates at the intersection of media, technology and AI.
Founded by tech visionaries John Furrier and Dave Vellante, SiliconANGLE Media has built a dynamic ecosystem of industry-leading digital media brands that reach 15+ million elite tech professionals. Our new proprietary theCUBE AI Video Cloud is breaking ground in audience interaction, leveraging theCUBEai.com neural network to help technology companies make data-driven decisions and stay at the forefront of industry conversations.
