It has been alleged that the voting records of millions of citizens of America are available on a site on the dark web which is affiliated to Hell, a well-known cybercrime forum.
The administrator of the forum posted a link to the site on which the data is hosted.
The password-protected site is available on a hidden service in the dark web.
The information available on this dark web site may not be particularly sensitive, but its availability on the site shows that personal data is easily accessible to interested hackers.
Apparently, the datasets available on dark web seem to include the full name of the voters, dates of birth, addresses, registered date they can vote and local school districts, among a number of other pieces of information.
The uploaded information also includes previous elections’ voting records and political affiliations.
The sizes of largest two files uploaded are 1 GB and 1.2 GB, respectively.
Each contains at least one million entries.
The folder under which these files are uploaded has been named as “US_Voter_DB.”
The legitimacy of the contents has not yet been verified.
Further, it is not very clear as to how or from where the data was sourced. CSO Online, a news site, reported on 28 December 2015 that records of 191 million voters were exposed on the internet because of an issue related to database configuration.
This was discovered by Christopher Vickery, a security researcher.
Within the dump, he found his own personal information as well.
According to DataBreaches.net, it is possible to obtain information about voter lists registration, depending on the state, and combine it with other databases for creating a more comprehensive picture about the life of a person.
The data that has been uploaded on dark web appears to be that of the voters in Ohio.
This state makes records of voters available on internet.
In this connection, DataBreaches.net has also warned that the states need to exercise more caution and protect voter registration data.
Though sensitive data such as credit card information or social security number are not part of the voter information uploaded on to the dark web, the data that is available is considered to be very valuable.
According to security researchers who are well versed about the underground data market, hackers can make use of this data for phishing and to dox people.
This is to say that a hacker can act as a trusted source using the voter information available on the site and convince people to part with more sensitive data, for example, banking details to them.
When the news was reported for the first time in 2015, the data from AdultFriendFinder, a cheating site, was posted in Hell.
The darknet hacking forum returned earlier this month after remaining shutdown for many months.
The forum is currently run by someone whose username is ROR[RG].
This person was a moderator in the previous iteration of the site.
It appears that the first chunk of voter information was uploaded or modified for the last time on 27 December 2015 and the compressed version of the same data was added on 11 January 2016.
The sad reality of the whole things is that people cannot do anything about it now. Once hackers have obtained their data, no one can ever get it back.