Sensitive Files Exposed in Oklahoma Securities Commission Data Leak

Sensitive Files Exposed in Oklahoma Securities Commission Data Leak

Millions of sensitive files were discovered on an unprotected server belonging to a state level agency.

  • By Sydny Shepard
  • Jan 18, 2019

Millions of sensitive files—some regarding investigations by the FBI—were uncovered in an unprotected data leak at the Oklahoma Securities Commission in December. 

Forbes reported that three terabytes of information was left on a server with no password, leaving it open to anyone with an internet connect. The leaked data included passwords, bank transactions, thousands of social security numbers and email archives stretching back nearly two decades. 

"[The breach] represents a compromise of the entire integrity of the Oklahoma department of securities' network," Chris Vickery, head of research at UpGuard, which discovered the leak, told Forbes. "It affects an entire state level agency. ...It's massively noteworthy."

Vickery said the FBI files contained "all sorts of archive enforcement actions" dating back seven years. The documents included spreadsheets with agent-filled timelines of interviews related to investigations, emails from parties involved in various cases and bank transaction histories. There were also copies of letters from subjects, witnesses and other parties involved in FBI investigations.

Cybersecurity firm UpGuard discovered the leak and said they reported it to the Oklahoma Department of Securities. Forbes asked the FBI to comment on the leak of case files and a spokes person provided the following statement:

"Adhering to Department of Justice policy, the FBI neither confirms nor denies any investigation."

In a blog post about the data leak, UpGuard said that while there was years of information on the server, it was not accessible for long.

"The good news is that, while the contents of the server extended over years, the known period of exposure was quite short," UpGuard said. "Shortening the window of exposure reduces the likelihood of other parties accessing the data and enables its owners to take responsive measures before the data is used maliciously."

About the Author

Sydny Shepard is the Executive Editor of Campus Security & Life Safety.

Featured

  • Maximizing Your Security Budget This Year

    Perimeter Security Standards for Multi-Site Businesses

    When you run or own a business that has multiple locations, it is important to set clear perimeter security standards. By doing this, it allows you to assess and mitigate any potential threats or risks at each site or location efficiently and effectively. Read Now

  • Getting in Someone’s Face

    There was a time, not so long ago, when the tradeshow industry must have thought COVID-19 might wipe out face-to-face meetings. It sure seemed that way about three years ago. Read Now

    • Industry Events
    • ISC West

  • Live From ISC West 2024: Post-Show Recap

    ISC West 2024 is complete. And from start to finish, the entire conference was a huge success with almost 30,000 people in attendance. Read Now

    • Industry Events
    • ISC West

  • ISC West 2024 is a Rousing Success

    The 2024 ISC West security tradeshow marked a pivotal moment in the industry, showcasing cutting-edge technology and innovative solutions to address evolving security challenges. Exhibitors left the event with a profound sense of satisfaction, as they witnessed a high level of engagement from attendees and forged valuable connections with potential clients and partners. Read Now

    • Industry Events
    • ISC West
Most   Popular

Featured Cybersecurity

Webinars

New Products

  • Camden CV-7600 High Security Card Readers

    Camden CV-7600 High Security Card Readers

    Camden Door Controls has relaunched its CV-7600 card readers in response to growing market demand for a more secure alternative to standard proximity credentials that can be easily cloned. CV-7600 readers support MIFARE DESFire EV1 & EV2 encryption technology credentials, making them virtually clone-proof and highly secure. 3

  • Mobile Safe Shield

    Mobile Safe Shield

    SafeWood Designs, Inc., a manufacturer of patented bullet resistant products, is excited to announce the launch of the Mobile Safe Shield. The Mobile Safe Shield is a moveable bullet resistant shield that provides protection in the event of an assailant and supplies cover in the event of an active shooter. With a heavy-duty steel frame, quality castor wheels, and bullet resistant core, the Mobile Safe Shield is a perfect addition to any guard station, security desks, courthouses, police stations, schools, office spaces and more. The Mobile Safe Shield is incredibly customizable. Bullet resistant materials are available in UL 752 Levels 1 through 8 and include glass, white board, tack board, veneer, and plastic laminate. Flexibility in bullet resistant materials allows for the Mobile Safe Shield to blend more with current interior décor for a seamless design aesthetic. Optional custom paint colors are also available for the steel frame. 3

  • HD2055 Modular Barricade

    Delta Scientific’s electric HD2055 modular shallow foundation barricade is tested to ASTM M50/P1 with negative penetration from the vehicle upon impact. With a shallow foundation of only 24 inches, the HD2055 can be installed without worrying about buried power lines and other below grade obstructions. The modular make-up of the barrier also allows you to cover wider roadways by adding additional modules to the system. The HD2055 boasts an Emergency Fast Operation of 1.5 seconds giving the guard ample time to deploy under a high threat situation. 3