RNC Voter Data Leaked
Millions of voter data records belonging to the Republican National Committee (RNC) have been leaked. The data is maintained on an unsecured storage cloud account managed by Deep Root Analytics. The cloud account is an Amazon Web Services S3 bucket storage account. Deep Root Analytics is a contractor working for the RNC.
The leaked voter data includes:
- RNC ID Numbers
- Birth dates
- Mailing addresses
- Phone numbers
- Party affiliation
- Self-reported racial information
- “modeled” voter profiles
The data has been exposed since June 1, 2017. The leaked data was both viewable and downloadable. The voter databases are 25 terabytes and contain 198 million records. The vulnerability occurred because Deep Root set the permission on the files to public. That means, any ow who knew where to look for the data could access it – no hacking required! The permissions on the data are not set to secure.