Data of nearly two million U.S. voters leaks

1.8 Million Chicago voter records leaked by a massive US voting machine supplier

ES&S says it was notified by UpGuard researcher Chris Vickery of the vulnerable database that contained personal information it collected from recent elections in Chicago, Illinois.

In the case of this breach, as well as others, this data was only exposed because the Amazon S3 bucket in question was configured to allow public access, permitting anyone accessing the repository's URL to download its contents. The company assured the breach did not contain ballot information or vote totals, and that it had no impact on the election. ES&S secured the files and shut down the server on August 12, one day after the leak was discovered.

It is still unknown when the files were uploaded to the unsecured server, how long the files were publicly available online or whether they were accessed by any potentially malicious actors. The company said it had "promptly secured" the files on Saturday evening and had launched "a full investigation, with the assistance of a third-party firm, to perform thorough forensic analyses of the AWS server".

Chicago's election board, meanwhile, says it is "deeply troubled" to hear of the exposure, but applauded ES&S for taking quick action.

"These back-up files had no impact on any voters' registration records and had no impact on the results of any election".


"The company is in the process of reviewing all procedures and protocols, including those of its vendors, to ensure all data and systems are secure and prevent similar situations from occurring", it said in a statement.

It's a wonder to this writer that the constant calls for things like e-voting machines continue when those in charge of securing voter data can't even do that right. "We have been in steady contact with ES&S to order and review the steps that must be taken, including the investigation of ES&S's AWS server", she said.

It's not clear whether anyone tried to steal the voter data. Perhaps most critically, the last four digits of the Social Security numbers of all 1.8 million people are also in the data set, a highly sensitive type of data often used as PIN codes or for verification purposes.

"They were charged with safeguarding the very information that we're talking about", Allen said, "so we're reevaluating the contract and we will do everything in our powers to make certain something like this never happens again". As more and more functions of daily life shift to a digital footing, so too grows the surface for a potential cyber attack, no matter whether this cyber risk is shifted off to a third-party vendor.

Related:

Comments

Latest news

GOP Sen. Bob Corker: Trump Hasn't Demonstrated 'Stability' Or 'Competence'
In a series of tweets, he described SC senator Lindsey Graham as "publicity seeking" and Arizona senator Jeff Flake as "toxic". Senator Bob Corker says he hopes his critical comments can influence President Donald Trump and those around him.

US, South Korean defence chiefs to meet this month - Pentagon
Dunford told reporters that he has advised the US leadership not to dial back on the exercises with South Korea. He was elected in May after a decade of conservative rule that saw animosity deepen between the rival Koreas.

Trump attacks Lindsey Graham over Charlottesville violence comments
Several minutes later, Trump tweeted again: "The public is learning (even more so) how dishonest the Fake News is". Trump also went after the media for what he said was "misrepresenting" his comments about "hate, bigotry, etc".

No one wins PowerBall, jackpot to reach over $500M
The most recent big Powerball win was awarded in June to a single victor in California who took home a jackpot of $447.8 million. While one of the largest jackpots in history , it is still far shy of the record: $1,586,400,000.

Oil prices recover as U.S. crude stocks decline
The SPR stores its federally owned oil stocks in underground salt caverns at four storage sites in Texas and Louisiana. Both nations are exempt from the pact because their oil industries have been disrupted by civil unrest.

Dodgers' Yu Darvish lifted with back tightness on Wednesday
The Dodgers won Wednesday thanks to a three-run ninth, and they continue to run away with the top record in baseball at 85-34. They were the finest group of players Brooklyn has seen on one team, immortalized by Roger Kahn the author of Boys of Summer.

Tony Ferguson-Kevin Lee interim title bout likely for UFC 216
Lee was passed over for a spot on The Ultimate Fighter as a coach, but it is possible this was the UFC's plan all along. What about Khabib? According to White the vaunted grappler is still getting back to 100%, after undergoing surgery.

Merck CEO quits Trump council over Charlottesville
The CEO of Intel announced his departure from President Donald Trump's American Manufacturing Council in a late Monday blog post . Since the events in Charlottesville , Ivanka Trump and Vice President Mike Pence have denounced the white supremacist groups.

Sean Payton addresses firing of team doctors, Breaux injury
The same day that the news broke that the Saints will lose one corner for six weeks, New Orleans got another back in action. He was expected to be the Saints' third or fourth corner heading into this season.

Liverpool's Sheyi Ojo joins Fulham on a season-long loan
In August 2015 the Hemel Hempstead born winger signed on loan for Wolves . He'd spent time training with the Dons' first team prior to the switch.

Cowboys' Ezekiel Elliott, NFLPA Officially Appeal Six-Game Suspension
Elliott's appeal will focus on the credibility of his ex-girlfriend, Tiffany Thompson , according to sources close to the rusher. In his rookie year, Elliott rushed for 1,631 yards and 15 touchdowns en route to earning first-team All-Pro honors in 2016.

Tanner Ainge loses primary election for Utah's US House seat
The race in this usually subdued political environment generated hundreds of thousands of dollars in spending and heated attacks. Utahns value the truth, not attack ads, and I'm running to tell the truth in Washington", Allen said in the prepared statement.

Google Home can now make phone calls in the United States and Canada
By default, the smartapp has the toggle turned on to allow Google Assistant access to all ST devices and routines. If you own a Google Home , or plan on buying the technology soon, your life has just become that much easier.

Everton medical today for Swansea midfielder Gylfi Sigurdsson
Their trip to Manchester City will be the clubs first real test of the season with several new faces taking over the squad. He has been linked with a move to Tottenham , but Koeman said last week there had been no offers for the England global .

Cedar Point unveils new coaster 'Steel Vengeance'
Take a virtual ride on Cedar Point's new record-breaking coaster, Steel Vengeance, in the video above to see it for yourself. Steel Vengeance, the tallest, fastest and longest hybrid roller coaster in the world, will stand at more than 200 feet tall.

Other news