Slashdot Mirror
Every Voter In The Philippines Exposed In Massive Data Breach (infosecurity-magazine.com)
schwit1 writes: "The database of the Philippine Commission on Elections has been breached and the personal information of 55 million voters potentially exposed in what could rank as the worst ever government data breach anywhere," according to Infosecurity Magazine.
The magazine attributes an initial web site breach to Anonymous, who were reportedly trying to persuade the commission to enable more security features on their automated vote-counting system before upcoming national elections on May 9. A second group named LulzSec Pilipinas then later posted the entire voter database online.
Trend Micro wrote that "Every registered voter in the Philippines is now susceptible to fraud and other risks after a massive data breach leaked the entire database of the Philippines' Commission on Elections." They report that the breached data even included 15.8 million fingerprint records, as well as 1.3 million records for overseas Filipino voters, including their passports' numbers and expiration dates, all stored in plain text.
The magazine attributes an initial web site breach to Anonymous, who were reportedly trying to persuade the commission to enable more security features on their automated vote-counting system before upcoming national elections on May 9. A second group named LulzSec Pilipinas then later posted the entire voter database online.
Trend Micro wrote that "Every registered voter in the Philippines is now susceptible to fraud and other risks after a massive data breach leaked the entire database of the Philippines' Commission on Elections." They report that the breached data even included 15.8 million fingerprint records, as well as 1.3 million records for overseas Filipino voters, including their passports' numbers and expiration dates, all stored in plain text.
Given the epidemic negligence regarding IT security everywhere in the world, you can expect things like this to happen in every country. People/companies who maintain your data will rather save 10 cents of money and 10 minutes of effort going on with insecure vs. secure solutions. Thus, the only data that remains safe is the data that you never entered or transmitted to anyone.
Trend Micro did not break the news. It was CNN Philippines: http://cnnphilippines.com/news... Trend Micro just analyzed the data dump a week after it happened.
tl;dr "If you use OpenBSD, the `when' is slightly later."
The solution to big data breaches is to abandon the concept of big data. I'd be happy with returning to paper records for many things, as the benefits of computerisation are often far over-rated, but many might not be.
It might be good. If something like this happened in the US, it might finally wean our financial institutions off of using the stupid SS# as a universal id / security token. The whole system is setup to fail over something like this.
W..w..W - Willy Waterloo washes Warren Wiggins who is washing Waldo Woo.
There's a piece of wishful thinking.
Yes, it makes sense to choose platform with better security, but that doesn't make security easy, any more than <car_analogy>buying a Volvo makes you a safer driver:</car_analogy>
Here's the reason so many systems are insecure: confirmation bias. It works like this.
Q: How much will it cost to do the system?
A: X + Y dollars if we want do a good job with security.
Q: Well, in that case we're not doing it, because we only have X dollars. If we spent X dollars would that be secure enough?
A: Wishful thinking and confirmation bias kick in
Post may contain irony: discontinue use if experiencing mood swings, nausea or elevated blood pressure.
It already has, the US voter registration database and attendance record has been sold to each politcal party since it was first digitised.
From that continously updated database, information is broken down my county and distributed to local politico officials (on a CD or DVD).
Yeah, but not fingerprints or SS#. This release of information was worse than addresses and affiliation.
W..w..W - Willy Waterloo washes Warren Wiggins who is washing Waldo Woo.
You don't understand how bad corruption is here. Politicians literally buy votes and nobody has a problem with it. "Running a negative campaign" in the Philippines means taking out a hit on your opponent. Hundreds of political assassinations every year, and the problem is unsolvable because the people have accepted it. The news is too scared to investigate or report on it so instead it reports on a drug problem that doesn't really exist.
No, things cost what they cost. The $4 starbucks you buy every morning is still $4. Groceries, rent, utilities, all about the same. So you might get a yes but you can't afford to take her anywhere nice on that budget.
Did you know that the tin foil hat you wear on your head actually increases your exposure to radiation? The radiation bounces around inside the hat hitting you multiple times! You should instead use my patented grounded metal foil masks that absorb and remove all radiation from all directions!
APK likes to ask for responses to the same things over and over. Maybe he just likes the responses?