In the race to be the most cyberinsecure state government, the Georgia Secretary of State sent out 6 million voter records that included social security numbers and birth dates, along with other information about Georgia voters.
Unlike the Paris attack reporting, all of the foregoing has been verified and even admitted by the Secretary of States office.
Georgia: ‘Clerical error’ in data breach involving 6 million voters by Kristina Torres reports:
Two Georgia women have filed a class action lawsuit alleging a massive data breach by Secretary of State Brian Kemp involving the Social Security numbers and other private information of more than six million voters statewide.
The suit, filed Tuesday in Fulton County Superior Court, alleges Kemp’s office released the information including personal identifying information to the media, political parties and other paying subscribers who legally buy voter information from the state.
In response, Kemp’s office blamed a “clerical error” and said Wednesday afternoon that they did not consider it to be a breach of its system. It said 12 organizations, including statewide political parties, news media organizations and Georgia GunOwner Magazine, received the file.
…
So a “clerical error” doesn’t count as a data breach?
Given that even a sanity check for file size didn’t prevent this breach, leak, clerical error, I have to wonder why they are so certain about the number of organizations that received the file?
And who they may have shared it with since October of 2015?
That’s the other odd fact. The file was sent in October but it takes someone filing a lawsuit in mid-November for the breach, leak, clerical error to come to light?
How’s your state government’s security?
PS: The case details (but not the pleadings) can be found at: http://justice.fultoncountyga.gov/PASupCrtCM/CaseDetail.aspx?CaseID=70749412015CV268170.