It was discovered that hundreds of job applicants’ personal information had been compromised due to a glitch on Texas Right to Life website that allowed anyone to view their resumes, which were stored in an unencrypted directory.
Technically speaking, the group’s primary website, which was constructed mostly in WordPress, was not effectively protecting the file storage, which was used to store the resumes of more than 300 job seekers, as well as other materials contributed to the website, said the security researcher to TechCrunch. There were names, phone numbers, and addresses on the resumes, along with information about a person’s work history.
About a week after details of the leak were revealed to Twitter on Friday, a website flaw was discovered and rectified over the weekend. The disclosed files are no longer listed on the group’s website.
As a result, “we are taking measures to protect the concerned folks,” a spokesman for Texas Right to Life, Kimberlyn Schwartz, told TechCrunch.
In response to a question, Schwartz would not disclose whether the group planned to notify anyone whose personal information was exposed by the security lapse, or if it had already done so.
“Whistleblower” website created by Texas Right to Life stirred much controversy this week when it invited locals to report anyone who could be seeking an abortion in violation of the state’s new restrictive abortion law, which went into effect this month. After six weeks, anybody can sue someone who wants an abortion, or anyone who “aides and abets” an abortion. However, this provision has been understood to include not only physicians doing the treatment itself; it also includes anyone else participating in the procedure, such as donating money or driving someone else.
“Whistleblower” website was inundated in no time with false tips, memes even Shrek porn as a show of discontent. After a brief outage on Thursday, a group of activists released an iOS shortcut that would allow anyone to pre-fill phoney information into the website’s form before it went live.
By the weekend, GoDaddy, which hosts the website for Texas Right to Life, had informed the group that the site breached its terms of service and had given them 24 hours to find a new host. Epik, a web provider that helped other contentious sites like the far-right social network Gab get back online, was able to get it back online for a short time. Both failed to last.