Jun 1, 2018

Misconfigured Google Groups are leaking a lot of sensitive data

Photo: Chesnot/Getty Images

Misconfigured Google Groups may accidentally be spewing private conversations over the internet.

Why it matters: A study conducted by Kenna Security published Friday found that, out of 9,600 public Google Groups it found by researching domains held by some of largest web sites, around a third leaked email sent through the platform.

Kenna lists a sampling of the email subjects it found:

Re: Document(s) for Review for Customer [REDACTED]. Group: Accounts Payable
Re: URGENT: Past Due Invoice. Group: Accounts Payable
Fw: Password Recovery. Group: Support
GitHub credentials. Group: [REDACTED]
Sandbox: Finish resetting your Salesforce password. Group: [REDACTED]
RE: [REDACTED] Suspension Documents. Group: Risk and Fraud Management

What now: Google posted instructions to bolster privacy in apparent response to the study. Simple changes to settings could prevent the emails from being visible to the public.

Where have I heard this before? The Google issue is similar to other leaky data problems caused by misconfigured settings, including a number of cloud storage accounts and web databases that researchers have discovered over the past few years.

Go deeper

Orion Rummler

8 hours ago - Politics & Policy

Trump says he will campaign against Lisa Murkowski after her support for Mattis

Trump with Barr and Meadows outside St. John's Episcopal church in Washington, D.C. on June 1. Photo: Brendan Smialowski/AFP via Getty Images

President Trump tweeted on Thursday that he would endorse "any candidate" with a pulse who runs against Sen. Lisa Murkowski (R-Alaska).

Driving the news: Murkowski said on Thursday that she supported former defense secretary James Mattis' condemnation of Trump over his response to protests in the wake of George Floyd's killing. She described Mattis' statement as "true, honest, necessary and overdue," Politico's Andrew Desiderio reports.

Go deeper (1 min. read)

Dave Lawler

8 hours ago - World

The president vs. the Pentagon

Trump visits Mattis and the Pentagon in 2018. Photo: Brendan Smialowski/AFP via Getty

Over the course of just a few hours, President Trump was rebuffed by the Secretary of Defense over his call for troops in the streets and accused by James Mattis, his former Pentagon chief, of trampling the Constitution for political gain.

Why it matters: Current and former leaders of the U.S. military are drawing a line over Trump's demand for a militarized response to the protests and unrest that have swept the country over the killing of George Floyd by police.

Go deeper (4 min. read)

Sara Fischer, Ursula Perano

9 hours ago - Economy & Business

New York Times says Tom Cotton op-ed did not meet standards

Photo: Avalon/Universal Images Group via Getty Images)

A New York Times spokesperson said in a statement Thursday that the paper will be changing its editorial board processes after a Wednesday op-ed by Sen. Tom Cotton (R-Ark.), which called for President Trump to "send in the troops" in order to quell violent protests, failed to meet its standards.

Why it matters: The shift comes after Times employees began a coordinated movement on social media on Wednesday and Thursday that argued that publishing the op-ed put black staff in danger. Cotton wrote that Trump should invoke the Insurrection Act in order to deploy the U.S. military against rioters that have overwhelmed police forces in cities across the country.

Go deeper (2 min. read)