Stories
Slash Boxes
Comments

SoylentNews is people

Details of U.S. 'Top Secret' Clearance Holders Leaked Online

posted by Fnord666 on Wednesday September 06 2017, @01:13PM   Printer-friendly
from the leaking-like-a-sieve dept.

MrPlow writes:

Submitted via IRC for TheMightyBuzzard

The personal details of thousands of individuals who submitted job applications to an international security firm were exposed online due to an unprotected storage server set up by a recruiting services provider.

Chris Vickery of cyber resilience firm UpGuard discovered on July 20 an Amazon Web Services (AWS) S3 storage bucket that could be accessed by anyone over the Internet. The server stored more than 9,400 documents, mostly representing resumes of people who had applied for a job at TigerSwan, an international security and global stability firm.

The documents included information such as names, physical addresses, email addresses, phone numbers, driver's license numbers, passport numbers and at least partial social security numbers (SSNs). In many cases, the resumes also provided information on security clearances from U.S. government agencies, including the Department of Defense, the Secret Service, and the Department of Homeland Security. Nearly 300 of the exposed resumes listed the applicant as having a "Top Secret/Sensitive Compartmented Information" clearance.

According to UpGuard, a majority of the individuals whose information was compromised were military veterans, but hundreds of resumes belonged to law enforcement officers who had sought a job at TigerSwan, a company recently described by The Intercept as a "shadowy international mercenary and security firm."

Source: http://www.securityweek.com/details-us-top-secret-clearance-holders-leaked-online

Original Submission

 
This discussion has been archived. No new comments can be posted.
Details of U.S. 'Top Secret' Clearance Holders Leaked Online | Log In/Create an Account | Top | 13 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 5, Interesting) by stormreaver on Wednesday September 06 2017, @02:05PM (2 children)

    by stormreaver (5101) on Wednesday September 06 2017, @02:05PM (#564146)

    I think the objective here to is make such incompetence seem so commonplace and inevitable that people turn off their brains even more than they already have; and just accept that this is how, "Cloud Computing" works, and that there is nothing that they can do about it. That approach made Microsoft monumentally wealthy, and people buy into it even today.

    Starting Score:    1  point
    Moderation   +4  
       Insightful=1, Interesting=3, Total=4
    Extra 'Interesting' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   5  

  • (Score: 3, Insightful) by Grishnakh on Wednesday September 06 2017, @02:41PM

    by Grishnakh (2831) on Wednesday September 06 2017, @02:41PM (#564152)

    If you're saying that this is the conspiracy the vendors are working on, there may be some merit to that. The military lately is on a giant "cloud" push; they want to push everything they possibly can into the cloud now. Sure reeks of payola.

  • (Score: 1) by khallow on Wednesday September 06 2017, @03:44PM

    by khallow (3766) Subscriber Badge on Wednesday September 06 2017, @03:44PM (#564168) Journal
    The "lull them into a false sense of insecurity" plan? It'll only work, if the customer isn't liable for the result.