Sacramento Bee Leaks 19.5 Million California Voter Records, Promptly Compromised by Hackers

Gizmodo | 2/8/2018 | Staff
jenn1020 (Posted by) Level 3
Click For Photo:,fl_progressive,g_center,h_450,q_80,w_800/ujmgd84apwswh9asawqk.jpg

Last month, a local California newspaper left more than 19 million voter records exposed online. Gizmodo confirmed this week that the records were compromised during an apparent ransomware attack.

The Sacramento Bee said in a statement that a firewall protecting its database was not restored during routine maintenance last month, leaving the 19,501,258 voter files publicly accessible. Additionally, the names, home addresses, email addresses, and phone numbers of 52,873 Sacramento Bee subscribers were compromised.

Incident - Efforts - Individuals - Contact - List

“We take this incident seriously and have begun efforts to notify each of the individuals on the contact list and to provide them resources to help guard against potential misuse of their personal contact information,” the paper said in a statement. “We are also working with the Secretary of State’s office to share with them the details of this intrusion.”

The Kromtech Security Center first discovered the data on January 31st and reviewed records from several of the exposed databases before determining who owned the data. Kromtech reached out immediately to multiple employees in the Bee’s IT department but received no response.

Gizmodo - Breach - February - Executive - Editor

Gizmodo was notified about the breach on February 2nd and reached out to an executive editor at the Bee. Our email was not returned. After emailing two other members of the Bee’s editorial board on Monday—including Gary Wortel, the paper’s president and publisher—Gizmodo was contacted by a public relations director at The McClatchy Company, the Bee’s owner.

A McClatchy spokesperson said the executive editor first contacted by Gizmodo had left the paper day our email was sent.

McClatchy - Statement - Tuesday - Protocols - Place

McClatchy provided an initial statement on Tuesday, saying it had “strict protocols in place to ensure the security of our data” and that it was “aware of a ransomware attack on one of our servers that was located outside our core IT structure.” The spokesperson added: “We know that in databases apparently...
(Excerpt) Read more at: Gizmodo
Wake Up To Breaking News!
Sign In or Register to comment.

Welcome to Long Room!

Where The World Finds Its News!