News Articles

Terrorists and politicians exposed by Dow Jones data leak

Source: SAMI, 13/05/2019

The database, which was hosted on AWS, was discovered by Bob Diachenko, a security researcher who has previously identified similar data breaches involving Veeam and contact aggregator Adapt.io. Diachenko wrote that the list was `sitting on a public Elasticsearch cluster 4.4GB in size and available for public access to anyone who knew where to look`. The watchlist in question is a database of individuals and companies that Dow Jones considers `high-risk` - which in this case refers to their potential links to terrorism or organised crime. Doing business with such entities can carry high penalties if they are under official sanctions, and financial institutions use lists like this to ensure they do not run afoul of anti-money laundering and counter-terrorist financing regulations. Individuals and companies contained in the database include government officials and politicians, suspected terrorists and perpetrators of major financial crimes. According to TechCrunch, the profiles included a varying range of details personal details like names, ages, geographic locations and sometimes photographs, alongside detailed notes culled from sources such as news reports, government filings and EU and UN data. `In other words, it contained the identities of government officials, politicians and people of political influence in every country of the world,` Diachenko wrote. `What makes this data so much more valuable is the focus on premium and reputable sources. In the age of fake news and social engineering online it is easy to see how valuable this type of information would be to companies, governments, or individuals.` A Dow Jones spokesperson said that the data, which is part of their risk and compliance offering, was no longer available, saying: `This data is entirely derived from publicly available sources. At this time our review suggests this resulted from an authorized third party`s misconfiguration of an AWS server, and the data is no longer available.` Unsecured Elasticsearch databases have been behind a number of data breaches recently, including one involving 32 million Sky Brazil customers. Hackers have also been targeting Elasticsearch clusters in an apparent attempt to implant victims` machines with malware. Watchlists have also been something of a security risk; Thompson Reuters suffered a breach of its own watchlist in 2016 which exposed 2.2 million records.


Search

  •    SA`S NEW travel rules prevented our minor children from attending a family funeral. My wife and children were on holiday in Florence, Italy, and I had returned early to our home in Singapore when we received the tragic news that our three-year-old niece had passed away. We wanted to return to SA immediately, in time for the funeral last Friday.... Read more...
  •    Calls for investigation into outsourced immigration services after The Independent revealed Home Office profits on UK visas surged by millions of pounds a week under private firm accused of exploiting applicants... Read more...
  •    Chantel* was only 15 years old when she hopped the Eswatini-South African border in early 2007. She says she lived her whole life in an orphanage in Manzini, never knew her biological parents and never saw her birth certificate... Read more...
  •    We, as South Africans, always complain about government service, however, I am extremely excited to report that my son arrived at Home Affairs on Wednesday morning on July 31 with an expectation of long queues, disinterested staff and very little help.... Read more...
  •    President Cyril Ramaphosa has signed into law the controversial National Credit Amendment Bill which is geared to provide relief to over-indebted consumers... Read more...
  •    South Africa seeks skilled individuals to live and work in SA.... Read more...
  •    The International Monetary Fund’s (IMF) senior resident representative in South Africa Montfort Mlachila has confirmed that South Africa has not requested an IMF loan and he added that, “We will not see a balance of payments (support programme) for South Africa.”... Read more...
  •    Herewith find a clear understanding of this often misunderstood section of the Act . When one looks at specifically the definition of a relationship as defined in the Act and The Regulations which is quoted below we wish to draw your attention to specifically to point 3 (2) ( a) (i) and (ii) which must be read very carefully and we highlight and bold the relevant sections and in particular wish to point out all the Act requires is that evidence of the relationship is for 2 years... Read more...
  •    The US government has announced that an increase in the investment threshold for foreigners to access a US Green Card via the Immigrant Investor EB-5 Programme will come into effect from November 21, 2019, when the amount will increase from $500 000 (about R7.5m) to $900 000 (about R13.5m).... Read more...
  •    CAPE TOWN, - Two immigration officials and an alleged `middleman` are in police custody after being arrested this week in connection with a bribery scheme, the Directorate for Priority Crime Investigation (Hawks) said on Wednesday.... Read more...

Get the latest Immigration News