The Hindu reports: It is a free for all on Greater Hyderabad Municipal Corporation’s portal when it comes to data about births or deaths. Thanks to its sloppy security, confidential records of several thousands, alive and dead, stand exposed on the municipal body’s website. At a click of the mouse, birth and death enquiry links…
Category: Exposure
Did a Christian right-wing organization expose private details of millions of people?
First someone left our voter registration details exposed to the world, but those were “just public records,” some argued. Now a second misconfigured database has been uncovered by Chris Vickery. This one, however, not only includes some states’ voter lists, but it also includes 19 million profiles with private information on religion, household values, gun ownership…
Did AVG leave your personal data exposed?
Ian Sherr reports: Ever had a day where you just wanted to shout, “You had one job“? The latest company to earn the rebuke is Netherlands-based antivirus software maker AVG, whose “Web tuneup” add-on for the Google Chrome browser promised to protect you from surfing to unsafe sites on the Internet. It turns out the…
More details emerge on Steam’s Christmas breach; 34,000 impacted
Valve is now apologizing for the Christmas day incident that exposed users’ information to each other almost randomly. Here’s their announcement today: On December 25th, a configuration error resulted in some users seeing Steam Store pages generated for other users. Between 11:50 PST and 13:20 PST store page requests for about 34k users, which contained sensitive…
“Not a creature was stirring” – well, except Chris Vickery
Three Lock Box is a construction escrow agency in Las Vegas. And while the name “lock box” might suggest security, unfortunately, they had a misconfigured MongoDB installation that exposed several million dollars in funds available in over 90 accounts. Chris Vickery uncovered the leaky database and contacted them immediately on December 24th because of concern that an attacker might be…
California might investigate massive leak of voter records
As I first reported in co-breaking the story about the massive leak of voter records that had been discovered by Chris Vickery, I called the California Attorney General’s Office to alert them to the leak of California voters’ information. The attorney I spoke with on December 21 told me she was immediately forwarding the information I provided, including the IP…