A Mysterious Database Exposed 200 Million Americans' Personal Info

(Image credit: Shutterstock)

Here's a strange one: CyberNews reported Friday that a Google Cloud database exposed the personal information of roughly 200 million Americans. It's not clear who owned the database, however, and it appeared to have been wiped on March 3. But that wasn't actually the end of the saga; things only got weirder from there.

First things first. CyberNews said the database contained 800GB of data in three folders. The first had 200 million records about American individuals, the second had "emergency call logs of a fire department based in the U.S." and the third had "a list of some of the 74 bike share stations that used to belong to a bike share program."

CyberNews said the records collected the following information about their subjects:

  • Full names and titles of the exposed individuals
  • Email addresses
  • Phone numbers
  • Dates of birth
  • Credit ratings
  • Home and mortgaged real estate addresses, including their exact locations
  • Demographics, including numbers of children and their genders
  • Detailed mortgage and tax records
  • Detailed data profiles, including information about the individuals’ personal interests, investments, as well as political, charitable, and religious donations

CyberNews guessed that some of the information was taken from the U.S. Census Bureau, but according to its analysts, the database itself was likely maintained by "a data marketing firm or a credit company." Unfortunately the unsecured database reportedly didn't include any information that revealed its owner's identity.

The database itself appeared to have been wiped on March 3. That could be a good thing, since it means that information's no longer publicly exposed, but it might also mean that a hacker wiped the database after copying the records with the intent of selling them to someone else. And that's where things get even weirder.

CyberNews said that "we did not manage to discover who [the database] belonged to before the unidentified party erased all the records and left a link to a website where a dancing pirate urges visitors to fix their security." Which is exactly the kind of thing one wants to hear when the information of 200 million people is at risk.

This is the kind of story that A) immediately makes one question how much information has been exposed in public databases like this and B) leads people to check their calendars to make sure the entire report wasn't an April Fools joke. Rest assured, even though the last few months have felt like decades, it's still March.

Nathaniel Mott
Freelance News & Features Writer

Nathaniel Mott is a freelance news and features writer for Tom's Hardware US, covering breaking news, security, and the silliest aspects of the tech industry.

  • maikutech
    If its from a google cloud based server.
    Why won't google take the initiative and lock it down to prevent further damaging to corps and individuals ?
    Reply
  • Wolfshadw
    maikutech said:
    If its from a google cloud based server.
    Why won't google take the initiative and lock it down to prevent further damaging to corps and individuals ?

    It's already gone.

    The database itself appeared to have been wiped on March 3. That could be a good thing, since it means that information's no longer publicly exposed, but it might also mean that a hacker wiped the database after copying the records with the intent of selling them to someone else. And that's where things get even weirder

    -Wolf sends
    Reply
  • mikeebb
    Where does the story get that it's from Census records? If they have evidence of that, it's a Real Story since the Census is supposed to keep personal information Very Private.
    Reply
  • mrface
    Sometimes things are not what they seem.
    Reply
  • maikutech
    Wolfshadw said:
    It's already gone.



    -Wolf sends


    Didn't see that part when I read through it yesterday morning.

    Thanks
    Reply