Researchers at a cybersecurity firm, UpGuard, recently discovered that the Australian market analysis firm, Tetrad, left data for 120 million individuals publicly exposed in Amazon storage. This was not a traditional breach situation, rather this leak was a result of a ‘misconfiguration’ which allowed anyone with a browser to access and download certain files. The exposed data came from various retail clients of Tetrad and included sensitive details such as names, addresses and purchasing habits.
Organizations that collect data on a large scale must ensure that they have proper data retention policies and procedures in place to safeguard against the risk of a data breach (or data leak, as was the case here). This case also shows that your data is only as safe as your weakest link and that business partners' mistakes could negate any policies or procedures of a company.
At MT>3 we provide advice and guidance on information governance solutions to best protect organizations and their clients. Get in touch with us to learn more.