An unsecured database at VoterVoice exposed a trove of personal information, including more than 300,000 unique email addresses, home addresses and phone numbers of people who have sent messages to legislators or participated in campaigns around hot political topics through “the grassroots advocacy system.”
“In a leak that has an eerie resemblance to the 2016 leak of voter data via Facebook, this incident at VoterVoice has the potential to have far-reaching impacts,” said Warren Poschman, senior solutions architect with comforte AG.
“Organizations that provide platforms for outreach, advocacy, and lobbying hold some of the most sensitive information about the individuals and clients their platforms support,” a TechCrunch report cited security researcher John Wethington, who discovered the unprotected server, as saying. “Exposure of this information allows malicious actors to target individuals easily. One can easily imagine a scenario where an extremist group with access to this type of information could identify individuals based on any of these private attributes.”
Please register to continue.
Already registered? Log in.
Once you register, you'll receive:
The context and insight you need to stay abreast of the most important developments in cybersecurity. CISO and practitioner perspectives; strategy and tactics; solutions and innovation; policy and regulation.
Unlimited access to nearly 20 years of SC Media industry analysis and news-you-can-use.
SC Media’s essential morning briefing for cybersecurity professionals.
One-click access to our extensive program of virtual events, with convenient calendar reminders and ability to earn CISSP credits.