This is just a clusterfuck all the way around
Nobody is coming out of this looking good.
= new reply since forum marked as read
time to correct itself, if ever during this election cycle.
Data breach means some sort of your personal information is compromised.
DNC.
DNC Vendor. https://www.ngpvan.com/
[URL=
.html][IMG]
[/IMG][/URL]
Labor unions, nonprofits, presidential campaigns, and thousands of state and local campaigns.........whatever.
Yet this is how this "data breach" was described. http://blog.ngpvan.com/news/data-security-and-privacy
First, a one page-style report containing summary data on a list was saved out of VoteBuilder by one Sanders user. This is what some people have referred to as the “export” from VoteBuilder. As noted below, users were unable to export lists of people.
Second, there has been independent confirmation that NGP VAN has not received previous notice of a data breach regarding NGP VAN. Josh Uretsky, the former National Data Director for the Sanders campaign confirmed on MSNBC (at 5:47), and also on CNN, regarding the previous incident: “it wasn’t actually within the VAN VoteBuilder system, it was another system.”
What "other" system? So there were even more vulnerablities?
First, no NGP data was impacted by this situation, nor any Action ID or FastAction data. No client websites or web site data were impacted, either. For VAN clients, no myMembers, myWorkers, or myCampaigns data was impacted. The one area that was impacted was voter file data. We are confident at this point that no campaigns have access to or have retained any voter file data of any other clients; with one possible exception, one of the presidential campaigns. NGP VAN is providing a thorough report to the DNC on what happened and conducting a review to ensure the integrity of the system.
At the bold; yeah, yall better get right on that.
I'm not IT but if I suspect my home network or pc is unprotected, I'm disconnecting from the internet until I sort it out.
There was basically more than one breach (and if one were to believe anything the vendor says at this point) but on different systems.
Then this CYA paragraph saying how important $ecurity i$ to their company (and probably the company'$ reputation).
But it couldn't have been isolated if there was more than one breach, right?
I'm missing something, right? I'm misunderstanding something here?
Should have been handled "in-house".
ourselves an interesting sideshow.
