Database of 191 million US voters exposed on Internet


  • TECH
  • Tuesday, 29 Dec 2015

Data leak : A database with names, addresses, birth dates, party affiliations, phone numbers and e-mails of US voters has been exposed.

An independent computer security researcher uncovered a database of information on 191 million voters that is exposed on the open Internet due to an incorrectly configured database, he said.

The database includes names, addresses, birth dates, party affiliations, phone numbers and e-mails of voters in all 50 US states and Washington, researcher Chris Vickery said in a phone interview.

Vickery, a tech support specialist from Austin, Texas, said he found the information while looking for information exposed on the Web in a bid to raise awareness of data leaks.

Vickery said he could not tell whether others had accessed the voter database, which took about a day to download.

While voter data is typically considered public information, it would be time-consuming and expensive to gather a database of all American voters. A trove of all US voter data could be valuable to criminals looking for lists of large numbers of targets for a variety of fraud schemes.

"The alarming part is that the information is so concentrated," Vickery said.

Vickery said he has not been able to identify who controls the database, but that he is working with US federal authorities to find the owner so they can remove it from public view. He declined to identify the agencies.

A representative with the Federal Bureau of Investigation declined to comment.

A representative with the US Federal Elections Commission, which regulates campaign financing, said the agency does not have jurisdiction over protecting voter records.

Regulations on protecting voter data vary from state to state, with many states imposing no restrictions. California, for example, requires that voter data be used for political purposes only and not be available to persons outside of the United States.

Privacy advocates said Vickery's findings were troubling.

"Privacy regulations are required so a person’s political information can be kept private and safe,” said Jeff Chester, executive director of the Washington-based Center for Digital Democracy. The leak was first reported by CSO Online and Databreaches.net, computer and privacy news sites that Vickery said helped him attempt to locate the database's owner.

CSO Online said the exposed information may have originally come from campaign software provider NationBuilder because the leak included data codes similar to those used by that firm.

In a statement, NationBuilder chief executive officer Jim Gilliam said the database was not created by the Los Angeles-based company, but that some of its information may have come from data it freely supplies to political campaigns.

"From what we've seen, the voter information included is already publicly available from each state government, so no new or private information was released in this database," Gilliam said. — Reuters
Article type: metered
User Type: anonymous web
User Status:
Campaign ID: 1
Cxense type: free
User access status: 3
   

Next In Tech News

Google Earth's timelapse feature puts a spotlight on climate change
SpaceX wins $2.9 billion NASA contract for moon spacecraft -Washington Post
'Simple Photoshop': how a Pakistani counterfeiter may have aided Russian trolls
Facebook oversight board extends timeline to decide on Trump ban
GM, LG Energy Solution to build 2nd U.S. battery plant in Tennessee
Digital divide hampers Stockholm vaccinations as elderly struggle to book
Russia's Yandex to launch e-grocery delivery in Paris then London
Stellantis supplier seeks court order to compel chip supply for Jeep plant
How the Kremlin provides a safe harbour for ransomware
Antitrust regulator SAMR is now the sheriff of China’s Big Tech after Alibaba fine, analysts say

Stories You'll Enjoy


Vouchers