Friendly forums for passionate Dems!
More than 91 million posts since 2001
Home Latest Greatest Videos Forums Hide ads Join up!
Home Latest Greatest
Videos Forums Help
Hide ads Join up!
Latest Discussions»Retired Forums»2016 Postmortem»NGP VAN explanation blog ...
Welcome to DU! The truly grassroots left-of-center political community where regular people, not algorithms, drive the discussions and set the standards. Join the community: Create a free account Support DU (and get rid of ads!): Become a Star Member Latest Breaking News General Discussion The DU Lounge All Forums Issue Forums Culture Forums Alliance Forums Region Forums Support Forums Help & Search

2016 Postmortem

Related: About this forum

Paulie

(8,462 posts) Fri Dec 18, 2015, 12:35 PM Dec 2015

NGP VAN explanation blog post

http://blog.ngpvan.com/news/data-security-and-privacy

On Wednesday morning, there was a release of VAN code. Unfortunately, it contained a bug. For a brief window, the voter data that is always searchable across campaigns in VoteBuilder included client scores it should not have, on a specific part of the VAN system. So for voters that a user already had access to, that user was able to search by and view (but not export or save or act on) some attributes that came from another campaign.


InfoView thread info, including edit history TrashPut this thread in your Trash Can (My DU » Trash Can) BookmarkAdd this thread to your Bookmarks (My DU » Bookmarks) 6 replies, 938 views
ShareGet links to this post and/or share on social media AlertAlert this post for a rule violation PowersThere are no powers you can use on this post EditCannot edit other people's posts ReplyReply to this post EditCannot edit other people's posts Rec (3) ReplyReply to this post
6 replies = new reply since forum marked as read
Highlight: NoneDon't highlight anything 5 newestHighlight 5 most recent replies
NGP VAN explanation blog post (Original Post) Paulie Dec 2015 OP
. NCTraveler Dec 2015 #1
"but not export or save or act on" well then, I guess Bernie has full access back now, right? peacebird Dec 2015 #2
They must mean downloaded data mmonk Dec 2015 #4
If you can view, you can save Renew Deal Dec 2015 #5
NGP VAN should fire those responsible for causing the security holes Larkspur Dec 2015 #3
If the data was significant, then why wasn't the problem fixed long ago? winter is coming Dec 2015 #6
 

NCTraveler

(30,481 posts)
1. .
Reply to Paulie (Original post)
Fri Dec 18, 2015, 12:40 PM
Dec 2015

"We are confident at this point that no campaigns have access to or have retained any voter file data of any other clients; with one possible exception, one of the presidential campaigns."

"We immediately began an audit to determine if any users had intentionally or unintentionally gained access to data they normally would not have access to within the limited timeframe when the bug was live. Our team removed access to the affected data, and determined that only one campaign took actions that could possibly have led to it retaining data to which it should not have had access."

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

peacebird

(14,195 posts)
2. "but not export or save or act on" well then, I guess Bernie has full access back now, right?
Reply to Paulie (Original post)
Fri Dec 18, 2015, 12:44 PM
Dec 2015

Because the DNC said he had to prove all data had been expunged.... If it could never have been exported or saved or acted on, then ..........


TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
 

Larkspur

(12,804 posts)
3. NGP VAN should fire those responsible for causing the security holes
Reply to Paulie (Original post)
Fri Dec 18, 2015, 01:00 PM
Dec 2015

Obviously, they are incompetent or they do not understand the need for consumer privacy so they should be fired.

The Sanders campaign fired their data directer, as they should, now NGP VAN needs to fire their incompetent workers and managers who let this security breach happen in the first place.

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post

winter is coming

(11,785 posts)
6. If the data was significant, then why wasn't the problem fixed long ago?
Reply to Paulie (Original post)
Fri Dec 18, 2015, 01:07 PM
Dec 2015

And if it wasn't, then why all the fuss?

TopBack to the top of the page AlertAlert this post for a rule violation ShareGet links to this post PowersThere are no powers you can use on this post
  EditCannot edit other people's posts RecommendRecommend this post ReplyReply to this post
Reply to this discussion
Latest Discussions»Retired Forums»2016 Postmortem»NGP VAN explanation blog ...
Home | Latest Discussions | Greatest Discussions | Latest Videos | All Forums

About | Copyright | Privacy | Terms of service | Contact

In Memoriam

© 2001 - 2024 Democratic Underground, LLC. Thank you for visiting.