Stories
Slash Boxes
Comments

SoylentNews is people

Alteryx S3 Leak Leaves 123m American Households Exposed

posted by mrpg on Wednesday December 20 2017, @07:30PM   Printer-friendly
from the forecast-cloudy dept.

MrPlow writes:

Submitted via IRC for AndyTheAbsurd

An Amazon Web Services (AWS) S3 cloud storage bucket containing information from data analytics firm Alteryx has been found publicly exposed, comprising the personal information of 123 million US households.

[...] The 36 GB data file titled "ConsumerView_10_2013" contained over 123 million rows, each one signifying a different American household. A similar file was seen by UpGuard when the personal details of 198 million American voters, compiled in a dataset by a data firm used by the Republican National Committee, were exposed.

[...] Default security settings for S3 buckets usually allow only authorised users to access the contents; however, UpGuard reports the bucket was configured via permission settings to allow any AWS "Authenticated Users" to download its stored data.

Authenticated users are any user that has an AWS account.

[...] Alteryx took ownership for the bucket after it had secured it, UpGuard said, with an Alteryx spokesperson playing down the leak to Forbes.

"Specifically, this file held marketing data, including aggregated and de-identified information based on models and estimations provided by a third-party content provider, and was made available to our customers who purchased and used this data for analytic purposes," the spokesperson is quoted by Forbes as saying. "The information in the file does not pose a risk of identity theft to any consumers."

Source: Alteryx S3 leak leaves 123m American households exposed

Original Submission

 
This discussion has been archived. No new comments can be posted.
Alteryx S3 Leak Leaves 123m American Households Exposed | Log In/Create an Account | Top | 19 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 4, Touché) by c0lo on Wednesday December 20 2017, @07:54PM (1 child)

    by c0lo (156) Subscriber Badge on Wednesday December 20 2017, @07:54PM (#612489) Journal

    Why are giant databases containing private information on most of the voting population actually legal and unregulated in the US?

    Why do you hate profit?

    Maybe we do need a real violent dictatorship takeover for a few years...
    The Europeans got the point 75 years ago, shouldn't the US learn?

    Ah, you're commie. That explains why. Carry on, then (just beware TMB)

    (sarcastic grin)

    --
    https://www.youtube.com/watch?v=aoFiw2jMy-0 https://soylentnews.org/~MichaelDavidCrawford
    Starting Score:    1  point
    Moderation   +2  
       Touché=2, Total=2
    Extra 'Touché' Modifier   0  
    Karma-Bonus Modifier   +1  
    Total Score:   4  

  • (Score: 0) by Anonymous Coward on Thursday December 21 2017, @06:34PM

    by Anonymous Coward on Thursday December 21 2017, @06:34PM (#612879)

    Why are the people in it not permitted to have a copy, unless of course it's via an unintended disclosure like this situation?

    Even FB is required to do so if you ask, and they do so in the worst most unuser friendly methods possible. It's like they designed the ways to most piss off people if they have to do this.

    just make sure to ask for that before deleting your account.

    then later ask for it again after the account has been 'deleted'.