Make Donald Trump’s Website Secure Again


Throughout his presidential campaign, Donald Trump has repeatedly said that the U.S. needs to secure its borders. He has also hounded Hillary Clinton for using a private e-mail server for official communications during her tenure as the U.S. Secretary of State. Judging from his statements, Trump seems to very adamant about security and protecting sensitive information. 

However, according to MacKeeper Security Researcher Chris Vickery, until just recently, Trump’s official website——had been leaking campaign interns’ resumes on the internet. According to Vickery, Trump’s team had misconfigured the setting on their Amazon S3 server, exposing resumes of applicants which contained sensitive personal information, including name, work history, phone number and e-mail address.

This isn’t the first time that Vickery has discovered cybersecurity vulnerabilities. Last December, Vickery found a misconfigured database that exposed the names and birth dates of more than 191 million U.S. voters. Earlier that month, he discovered that the official online community for Hello Kitty and other Sanrio Co. characters was hacked, leaking the details of more than 3.3 million user accounts, many belonging to young children. 

According to Vickery, the Trump campaign website misconfiguration was an “entirely avoidable mistake.” I wonder if anyone got fired. . . 

To keep up with the constantly evolving world of privacy and security sign up for the Bloomberg BNA Privacy and Security Update.