"Nearly a Million Non-profit Donors' Details Left Exposed in Unsecured Database"
A database owned and operated by DonorView exposed nearly a million records containing Personally Identifiable Information (PII) of donors who sent money to non-profits. DonorView provides a cloud-based fundraising platform used by schools, charities, religious institutions, and other charitable or philanthropic organizations. Jeremiah Fowler, an information security researcher, discovered 948,029 records exposed online, including donor names, addresses, phone numbers, emails, payment methods, and more. An analysis of the data revealed the names and addresses of individuals designated as children. However, Fowler was unsure whether these children were associated with the organization collecting the donation or the recipients of the funds. Another document exposed the names of the children, their medical conditions, the names of their attending doctors, and information on whether the child's image could be used in marketing materials. This article continues to discuss the DonorView data exposure.
Submitted by grigby1