A Major Data Leak of US Voter Data Exposes Over 300 Million Records, Including 15 Million Emails
Our Threat Intelligence team has uncovered a significant data leak involving over 300 million records, including approximately 15 million email addresses. The leaked file, titled “Partial National Publicly Available Data - 76 GB,” contains sensitive information such as names, addresses, and even details of criminal charges. Below are the column headers from the leaked file.
How Do Hackers Obtain Sensitive Data?
Hackers use a variety of methods to access sensitive data like this. Initially, they must gain unauthorised access to a network, system, or device. This can be achieved through tactics like tricking users into downloading malware, such as infostealers, which can capture login credentials and other sensitive information. Data can also be scraped from publicly available data, or from data breaches. Another common method is exploiting vulnerabilities - security weaknesses in software or operating systems. These are just a few examples, but hackers have a huge range of techniques at their disposal.
Once hackers gain access, they can steal data, often to share, sell, or use in further attacks.
Implications of the Data Leak for Hackers
Typically, stolen data is used to carry out additional attacks or is traded on the dark web. In this case, due to the sensitivity of the information, it could be leveraged for politically motivated attacks, especially with the 2024 USA Election on the horizon. Such attacks could occur during the election and even afterwards, particularly if the results are contested. Potential threats include:
- Geotargeted disinformation and propaganda campaigns
- Targeted phishing campaigns
- Targeted telephone scams
Additional Concerns
This leak raises serious concerns about how hackers are accessing such extensive databases. Could they have breached an internal database to obtain this information? There have been numerous recent instances where government institutions were targeted by cybercriminals, leading to breaches or ransomware attacks.
Could This Leak Impact the Election?
Absolutely. Data leaks of this magnitude could significantly influence the election. By spreading disinformation, malicious actors could sway individuals to vote for a specific candidate. The detailed personal information could also enable criminals to commit identity fraud or even falsely update voter registration details. This could prevent legitimate voters from casting their ballots. Hackers could also cause mass disruption by altering voter information online or even deleting registrants from the system.
Stay Protected with DynaRisk
At DynaRisk, we believe everyone should have access to cybersecurity tools to protect themselves, their businesses, and their families. We partner with industries worldwide, particularly in the insurance and financial sectors, to offer our software as part of a cyber insurance policy, cyber protection programme, or employee benefit.
To learn more about our products, visit our product or solutions pages. For more information or a quick chat, contact us at info@dynarisk.com.