A leaky Amazon Web Services storage bucket has exposed more than 752,000 applications requesting copies of birth certificates.
A report yesterday by TechCrunch said the unsecured data set dates back to late 2017, but was just recently discovered by U.K.-based penetration testing company Fidus Information Security. The data is managed by a company that helps individuals obtain birth and death certificate copies from U.S. state government authorities. The company has not yet been identified.
Applications included such information as names, birth dates, current and past home addresses, email addresses, phone numbers, family member names and reasons for requesting the application. Over 90,000 death certificates were reportedly stored on the bucket as well, but those weren't accessible.
Please register to continue.
Already registered? Log in.
Once you register, you'll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.