Stories
Slash Boxes
Comments

SoylentNews is people

Alteryx S3 Leak Leaves 123m American Households Exposed

posted by mrpg on Wednesday December 20 2017, @07:30PM   Printer-friendly
from the forecast-cloudy dept.

MrPlow writes:

Submitted via IRC for AndyTheAbsurd

An Amazon Web Services (AWS) S3 cloud storage bucket containing information from data analytics firm Alteryx has been found publicly exposed, comprising the personal information of 123 million US households.

[...] The 36 GB data file titled "ConsumerView_10_2013" contained over 123 million rows, each one signifying a different American household. A similar file was seen by UpGuard when the personal details of 198 million American voters, compiled in a dataset by a data firm used by the Republican National Committee, were exposed.

[...] Default security settings for S3 buckets usually allow only authorised users to access the contents; however, UpGuard reports the bucket was configured via permission settings to allow any AWS "Authenticated Users" to download its stored data.

Authenticated users are any user that has an AWS account.

[...] Alteryx took ownership for the bucket after it had secured it, UpGuard said, with an Alteryx spokesperson playing down the leak to Forbes.

"Specifically, this file held marketing data, including aggregated and de-identified information based on models and estimations provided by a third-party content provider, and was made available to our customers who purchased and used this data for analytic purposes," the spokesperson is quoted by Forbes as saying. "The information in the file does not pose a risk of identity theft to any consumers."

Source: Alteryx S3 leak leaves 123m American households exposed

Original Submission

 
This discussion has been archived. No new comments can be posted.
Alteryx S3 Leak Leaves 123m American Households Exposed | Log In/Create an Account | Top | 19 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 0) by Anonymous Coward on Wednesday December 20 2017, @09:08PM (2 children)

    by Anonymous Coward on Wednesday December 20 2017, @09:08PM (#612536)

    Who gives a shit about the latest creative way they found to fuck themselves?

    Here's a halfway decent solution: http://www.legislation.gov.uk/ukpga/1998/29/section/11 [legislation.gov.uk]

  • (Score: 1, Insightful) by Anonymous Coward on Wednesday December 20 2017, @09:49PM

    by Anonymous Coward on Wednesday December 20 2017, @09:49PM (#612563)

    I wonder how long that "right to prevent processing for purposes of direct marketing" would last if Comcast, Verzion, AT&T, Time Warner ("Spectrum"), etc. were to set up shop in the UK. Your telecom companies just aren't evil enough, yet. Or at least they haven't been exposed.

    Also, how are those cameras around London doing? All 500,000 of them?

  • (Score: 2) by MichaelDavidCrawford on Thursday December 21 2017, @01:17AM

    by MichaelDavidCrawford (2339) Subscriber Badge <mdcrawford@gmail.com> on Thursday December 21 2017, @01:17AM (#612658) Homepage Journal

    Don't say I never did nothin' for ya.

    --
    Yes I Have No Bananas. [gofundme.com]