Today’s announcement from Upguard that
the data, which was stored in a publicly accessible cloud server owned by Republican data firm Deep Root Analytics, included 1.1 terabytes of entirely unsecured personal information compiled by DRA and at least two other Republican contractors
This makes it the largest breach of its kind.
Gizmodo reports that
Deep Root’s server was discovered by UpGuard’s [Chris] Vickery on the night of June 12 as he was searching for data publicly accessible on Amazon’s cloud service. He used the same process last month to detect sensitive files tied to a US Defense Department project and exposed by an employee of a top defense contractor.
It is now becoming clear that the network of voter databases allow well funded actors to combine information from various sources. Someone with bad intentions can piece together enough information to interfere and disrupt elections.
Political operations might view such databases as easily commoditized marketing data that can be discarded after an election. A hacker, on the other hand, might take a longer view, realizing the damage to be done in misusing knowledge of voting patterns.