2 min read

Poorly-configured online backup leaks US Air Force documents

Graham CLULEY

March 14, 2017

Ad One product to protect all your devices, without slowing them down.
Free 90-day trial
Poorly-configured online backup leaks US Air Force documents

Sensitive information related to the United States Air Force has been found exposed publicly on the internet, allowing anyone with a web connection to peruse them without authorisation and no need for a password.

The discovery was made by security researchers at MacKeeper who said that they had found gigabytes of files on an internet-connected backup drive that was not password-protected:

The most shocking document was a spreadsheet of open investigations that included the name, rank, location, and a detailed description of the accusations. The investigations range from discrimination and sexual harassment to more serious claims. One example is an investigation into a Major General who is accused of accepting $50k a year from a sports commission that was supposedly funneled into the National Guard.

As ZDNet reports, the names and addresses, ranks, and social security numbers of more than 4000 US Air Force officers were included in the stash of personal information.

Further documents included phone numbers and contact information for workers and their spouses.

Clearly some of the details exposed through the security lapse would be of value to foreign intelligence agencies and criminal gangs, and could lead to blackmail attempts or identity theft.

What we don’t know is how long the information has been accessible online, and we also do not know if anyone other than the security researchers had managed to stumble across the exposed information.

But the truth of the matter is that we shouldn’t ever have to find ourselves in a question to ask such questions.

Whenever you decide to store information on the internet, particularly sensitive data, you should be doing your utmost to ensure that you have minimised the risk of it falling into the wrong hands.

That means always keeping your computer patched and running an up-to-date anti-virus, using encryption, enabling passwords and ensuring that the password chosen is a strong one, turning on additional authentication checks such as two-step verification and restricting the range of trusted IP addresses from where users can login from.

Finally, if something doesn’t need to be stored online – maybe it be wiser not to store it online in the first place?

tags


Author



Right now

Top posts

The Holiday Guide to Tech Support: Fixing the Family Computer

The Holiday Guide to Tech Support: Fixing the Family Computer

November 24, 2021

2 min read
Bitdefender Celebrates 20 Years of Cybersecurity Leadership

Bitdefender Celebrates 20 Years of Cybersecurity Leadership

November 04, 2021

3 min read
Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

Bitdefender Study Reveals How Consumers Like (and Dislike) Managing Passwords

October 26, 2021

3 min read
What are drive-by download attacks and how do you prevent them?

What are drive-by download attacks and how do you prevent them?

October 25, 2021

2 min read
Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

Criminals Can't Wait to Add Your IoT Device to Their DDoS Networks

October 22, 2021

2 min read
Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

Six in 10 Consumers Faced a Cyber Threat in 2021, New Bitdefender Study Reveals

October 20, 2021

3 min read

FOLLOW US ON

SOCIAL MEDIA


You might also like

Common Credentials Criminals Use in IoT Dictionary Attacks Revealed Common Credentials Criminals Use in IoT Dictionary Attacks Revealed
Silviu STAHIE

November 30, 2021

3 min read
Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown Interpol Busts 1,000 Cyber Crooks and Recovers $27M in Massive Fraud Crackdown
Filip TRUȚĂ

November 29, 2021

2 min read
Social media firms will be forced to unmask online trolls, says Australia Social media firms will be forced to unmask online trolls, says Australia
Graham CLULEY

November 29, 2021

2 min read