another record breach

by Michael Werneburg
on 2017.06.20

You are here:
Risk topics
» Risk topics blog
April, 2018

March, 2018
· the planning fallacy

February, 2018
· Valentine's day vm backup plan

November, 2017
· the unsafe workplace and the body's response

October, 2017
· ISACA article is live

September, 2017
· published
· the Equifax breach
· Tracking Vulnerability Fixes to Production

August, 2017
· evaluating third party cyber risk

July, 2017
· getting it wrong with R
· de-identifying health information
· that's a lot of tracking!

June, 2017
· gaming Google news
· privacy in this day and age
· another record breach
· writing an industry standard
· ISACA article accepted

May, 2017
· Covey time-management quadrants
· safe harbor de-identification of health data
· an ISACA article

April, 2017
· my guide on managing third party risk
· PMP for five years
· metrics that matter
· 720 reads in 48 hours
· I lost my job

March, 2017
· farewell, SIRA board
· the message and the medium
· an interesting take on consulting


A data analytics company leaked personal information on 200 million voters. The details are described in somewhat hyperbolic terms here (not that the hyperbole is unwarranted). I guess the only thing that can top a data breach of this size is the slow growth of the population.

I have to wonder at the lack of fundamental controls on display here. I mean, it's an obvious comment, but at 1.1TB in size, this data would have been uploading at pipe-saturation-speed to whoever stole it for hours! And *no one* noticed and stopped it?

big list