Jun 1, 2018 - Technology

Misconfigured Google Groups are leaking a lot of sensitive data

Photo: Chesnot/Getty Images

Misconfigured Google Groups may accidentally be spewing private conversations over the internet.

Why it matters: A study conducted by Kenna Security published Friday found that, out of 9,600 public Google Groups it found by researching domains held by some of largest web sites, around a third leaked email sent through the platform.

Kenna lists a sampling of the email subjects it found:

  • Re: Document(s) for Review for Customer [REDACTED]. Group: Accounts Payable
  • Re: URGENT: Past Due Invoice. Group: Accounts Payable
  • Fw: Password Recovery. Group: Support
  • GitHub credentials. Group: [REDACTED]
  • Sandbox: Finish resetting your Salesforce password. Group: [REDACTED]
  • RE: [REDACTED] Suspension Documents. Group: Risk and Fraud Management

What now: Google posted instructions to bolster privacy in apparent response to the study. Simple changes to settings could prevent the emails from being visible to the public.

Where have I heard this before? The Google issue is similar to other leaky data problems caused by misconfigured settings, including a number of cloud storage accounts and web databases that researchers have discovered over the past few years.

Go deeper

Axios
34 mins ago - Podcasts

The fight over fracking

Fracking has become a flashpoint in the election's final week, particularly in Pennsylvania where both President Trump and Joe Biden made stops on Monday. But much of the political rhetoric has ignored that the industry has gone from boom to bust, beset by layoffs, bankruptcies and fire-sale mergers.

Axios Re:Cap digs into the state of fracking, and what it means for the future of American energy, with Bob McNally, president of Rapidan Energy Group.

Axios
56 mins ago - Politics & Policy

Democrats sound alarm on mail-in votes

Photo: Mark Makela/Getty Images

Democrats are calling a last-minute audible on mail-in voting after last night's Supreme Court ruling on Wisconsin.

Driving the news: Wisconsin Democrats and the Democratic secretary of state of Michigan are urging voters to return absentee ballots to election clerks’ offices or drop boxes. They are warning that the USPS may not be able to deliver ballots by the Election Day deadline.

Go deeper (1 min. read)Arrow
Orion Rummler
1 hour ago - Politics & Policy

Nxivm cult leader Keith Raniere sentenced to life in prison

Carts full of court documents related to the U.S. v. Keith Raniere case arrive at the U.S. District Court for the Eastern District of New York in May 2019. Photo: Drew Angerer/Getty Images

Nxivm cult leader Keith Raniere, 60, was sentenced to 120 years in prison on Tuesday in federal court for sex trafficking among other crimes, the New York Times reports.

Catch up quick: Raniere was convicted last summer with sex trafficking, conspiracy, sexual exploitation of a child, racketeering, forced labor and possession of child pornography. His so-called self-improvement workshops, which disguised rampant sexual abuse, were popular among Hollywood and business circles.

Go deeper (<1 min. read)Arrow