Data Security

DonorView breach exposes nearly 950K records

More than 948,000 records from major nonprofit management software provider DonorView have been exposed online as a result of an insecure database, according to TechRadar. Included in the more than 465 GB of leaked files were PDF, .csv, and .xlsx documents containing donors' personally identifiable information, including names and contact details, as well as payment method details, a report by cybersecurity researcher Jeremiah Fowler published on vpnMentor revealed. Fowler also noted that transaction details and donation frequencies have also been observed in some exposed donation records. Files used by DonorView were also found to lack encryption. Such data exposure could be exploited by threat actors to masquerade as charities and conduct fraudulent activities, according to Fowler, who called on donors to be vigilant of suspicious phone calls and emails. While DonorView has since removed public access to the exposed database upon Fowler's notification, the vendor has not provided a formal response.

Related

Data breach impacts Airsoft community site

Major airsoft game host and equipment renter Airsoft C3 had the sensitive data of 75,000 individuals part of its enthusiast community website compromised due to a Google Cloud Storage Bucket misconfiguration, indicating a significant threat to the U.S. airsoft community, according to Cybernews.

Details on 2021 Chemonics hack remain scant

International development firm Chemonics, which mainly caters to the United States Agency of International Development, has not yet provided more extensive information regarding a cyberattack that compromised more than 6,000 individuals initially reported in July 2021, reports FedScoop.

Related Events

Get daily email updates

SC Media's daily must-read of the most current and pressing daily news

By clicking the Subscribe button below, you agree to SC Media Terms and Conditions and Privacy Policy.