Voter and poll workers’ data exposed at EasyVote

Voter and poll workers’ data exposed at EasyVote

https://www.govtech.com/security/georgia-voter-info-posted-online-after-software-company-breach

Exploit: Misconfiguration
EasyVote Solutions: Voting Software Company

3964497747

Risk to Business: 1.561 =Severe

EasyVote Solutions has exposed some voter and poll worker data. The data was left unguarded and easily accessible on the internet. The software company says that exposed information does not include full voting records or registrations. The breach was discovered by South Carolina Law Enforcement Division (SLED) internet researchers. SLED and the FBI are investigating.

3964497747

Individual Impact: 1.772 =Severe

Exposed data for voters can include names, addresses, races and dates of birth. Exposed data for poll workers may include those details plus identity documents, Social Security numbers and financial data.

Customers Impacted: 3,000 so far
How It Could Affect Your Customers’ Business: Misconfiguration and sloppy security aren’t uncommon mistakes, but they’re always a problem and could be an expensive regulatory disaster in some industries.

Risk Levels:
1 - 1.5 = Extreme Risk
1.51 - 2.49 = Severe Risk
2.5 - 3 = Moderate Risk

*The risk score is calculated using a formula that considers a wide range of factors related to the assessed breach.