Saturday, February 8, 2025
HomeData BreachThousands of US Voters Personal Data Leaked Online Again

Thousands of US Voters Personal Data Leaked Online Again

Published on

SIEM as a Service

Follow Us on Google News

Thousands of US voters personal details exposed online again form misconfigured Amazon S3 bucket and the data appears to be a part of Robocent, a Virginia-based political campaign, and robocalling company.

Security researchers from Kromtech spotted the publically exposed Robocent cloud storage that contains 2594 listed files and opens for anyone to download. The exposed storage contains audio files, with pre-recorded political messages for robocalls dials and voter data.

Bob Diachenko, head of communications at Kromtech Security said: “It’s not known how long the data was left exposed, but it is long enough for tools like GrayHatWarfare to index and list it.”

The exposed data contains personal data including Full Name, Phone numbers, Address, Political affiliation, Age and birth year, Gender, Jurisdiction breakdown and Demographics based on ethnicity, language, education.

US voters personal details

As soon as Diachenko identified the open bucket he sent the disclosure to the owner of repository and Bucket and files has been secured quickly.

Cloud Storage leaks are common nowadays, California Voter Database Leaked last February puts 19 Million Voters Records Under Risk. The Robocent voter database Leak is the fifth major breach in last two years.

Also Read

California Voter Database Leaked – 19 Million Voters Records Under Risk

Hackers Stole More than 19 Million Records of California State Voter Database

198 Million American Voters Personal Records Leaked In Public- Biggest Voters Data Leak Ever

BitGrail Cryptocurrency Exchange Hacked & Stolen $170 Million in Nano

Gurubaran
Gurubaran
Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. He has 10+ years of experience as a Security Consultant, Editor, and Analyst in cybersecurity, technology, and communications.

Latest articles

Autonomous LLMs Reshaping Pen Testing: Real-World AD Breaches and the Future of Cybersecurity

Large Language Models (LLMs) are transforming penetration testing (pen testing), leveraging their advanced reasoning...

Securing GAI-Driven Semantic Communications: A Novel Defense Against Backdoor Attacks

Semantic communication systems, powered by Generative AI (GAI), are transforming the way information is...

Cybercriminals Target IIS Servers to Spread BadIIS Malware

A recent wave of cyberattacks has revealed the exploitation of Microsoft Internet Information Services...

Hackers Leveraging Image & Video Attachments to Deliver Malware

Cybercriminals are increasingly exploiting image and video files to deliver malware, leveraging advanced techniques...

Supply Chain Attack Prevention

Free Webinar - Supply Chain Attack Prevention

Recent attacks like Polyfill[.]io show how compromised third-party components become backdoors for hackers. PCI DSS 4.0’s Requirement 6.4.3 mandates stricter browser script controls, while Requirement 12.8 focuses on securing third-party providers.

Join Vivekanand Gopalan (VP of Products – Indusface) and Phani Deepak Akella (VP of Marketing – Indusface) as they break down these compliance requirements and share strategies to protect your applications from supply chain attacks.

Discussion points

Meeting PCI DSS 4.0 mandates.
Blocking malicious components and unauthorized JavaScript execution.
PIdentifying attack surfaces from third-party dependencies.
Preventing man-in-the-browser attacks with proactive monitoring.

More like this

OpenAI Data Breach – Threat Actor Allegedly Claims 20 Million Logins for Sale

Threat actors from dark web forums claim to have stolen and leaked 20 million...

Globe Life Ransomware Attack Exposes Personal and Health Data of 850,000+ Users

Globe Life Inc., a prominent insurance provider, has confirmed a major data breach that...

BeyondTrust Zero-Day Breach – 17 SaaS Customers API Key Compromised

BeyondTrust, a leading provider of identity and access management solutions, disclosed a zero-day breach...