- How to watch ‘Live Rescue’ for free 2 Years Ago
- Roger Stone to speak at Virginia strip club 2 Years Ago
- Trans/Sex: Solid sex toy picks for pre-op and non-op trans women 2 Years Ago
- Why Barrett Brown burned his National Magazine Award—and what he’s planning next 2 Years Ago
- That heartbreaking ‘Game of Thrones’ song has key ties to the book 2 Years Ago
- Here are the 11 best health documentaries on Netflix Today 6:00 AM
- How to add people to Google Home Today 6:00 AM
- How to play Fortnite on Mac Today 5:30 AM
- Feminist memes are a banner of social change on Instagram Today 5:00 AM
- VR game Jupiter and Mars thoughtfully explores climate change Today 4:30 AM
- The giant battle episode of ‘Game of Thrones’ is nearly here Sunday 10:12 PM
- ‘Game of Thrones’ finally revealed the Night King’s endgame Sunday 9:53 PM
- Sri Lankan government shuts down social media in wake of deadly blasts Sunday 7:56 PM
- Amazon Flex drivers now must use selfies to verify identity Sunday 6:34 PM
- #GentrifyingGeorge thinks 152-year-old HBCU should ‘just move’ Sunday 5:27 PM
Photo via Gino Santa Maria/Shutterstock (Licensed)
The exposure was closed one day after it was discovered.
Cybersecurity firm UpGuard discovered the vulnerability on Aug. 11 on an Amazon Web Services device where data was left out in the open to be downloaded by anyone with the correct web address. The leak, first reported by Gizmodo, contained the names, addresses, date of birth, partial social security numbers, and state ID info of Chicago residents. The data was not protected by a password.
UpGuard notified state authorities and the FBI earlier this week as soon as it found the breach. The data files were then downloaded by a cyber risk analyst who pinpointed their origin. Federal officials then looped in ES&S, which began an investigation with help from UpGuard. The company assured the breach did not contain ballot information or vote totals, and that it had no impact on the election.
“The company is in the process of reviewing all procedures and protocols, including those of its vendors, to ensure all data and systems are secure and prevent similar situations from occurring,” ES&S said in a statement. ES&S secured the files and shut down the server on Aug. 12, one day after the leak was discovered.
In a similar leak in June, a data analysis contractor hired by the Republication National Committee left nearly 200 million Republican voters exposed on an Amazon server. UpGuard discovered the 25TB database and helped Deep Root Analytics patch up its system.
Phillip Tracy is a former technology staff writer at the Daily Dot. He's an expert on smartphones, social media trends, and gadgets. He previously reported on IoT and telecom for RCR Wireless News and contributed to NewBay Media magazine. He now writes for Laptop magazine.