LocalBlox, a data firm that bills itself as "a powerful, scalable and distributed data acquisition platform" is the latest company to mistakenly leave data out in the open on a publicly accessible Amazon Web Services (AWS) S3 bucket. The company, based in Bellevue, Wash. left a slew of data online; 48 million records containing information on tens of millions of individuals including names, addresses, and dates of birth. The dataset also included data apparently scraped from Twitter handles, along with LinkedIn and Facebook profiles. Data from Zillow, a popular real estate site, has also been scraped and composited into the dataset. The company was notified of the unsecured bucket by researchers with UpGuard, a Mountain View firm that's had a knack for uncovering data sets like this as of late. The firm notified LocalBlox on February 28 and the bucket was secured later that day, UpGuard said Wednesday. The bucket contained a single 151.3 GB compressed file that decompressed to a 1.2 terabyte Newline Delimited JSON file. According to researchers, who combed through the dataset when they first came across it in a subdomain, “lbdumps,” on February 8, each record is in JSON format.

The law closes a loophole that could allow sensitive health data to be shared with the primary subscriber of a health plan.

23 cybersecurity pros discuss the best ways to avoid cyber alert fatigue.

Learn about what SCADA security is, examples of threats and vulnerabilities, and more in Data Protection 101, our series on the fundamentals of information security.

Tim Bandos describes how to leverage Shimcache, to conduct enterprise scale threat hunting.

The warnings, scheduled to roll out to users on Monday, come just days after Facebook suspended two other data analytics companies over similar data misuse allegations.

Learn about what a data repository is, the best practices for working with them, and more in Data Protection 101, our series on the fundamentals of information security.

A security researcher notified the restaurant last August it was leaking customers' data on its website in plain text.

A Vanderbilt researcher believes data breaches and a lack of cybersecurity at hospitals can be tied to patient deaths.

Learn about deep packet inspection in Data Protection 101, our series on the fundamentals of information security.

20 infosec experts weigh in on the top infosec considerations for the high tech industry.

After years of litigation a federal jury convicted Chinese turbine manufacturer Sinovel of conspiracy to commit trade secret theft, theft of trade secrets, and wire fraud last month.

Learn about Data-Centric Audit and Protection or DCAP in Data Protection 101, our series on the fundamentals of information security.

17 IT and security professionals discuss the best practices and solutions for securing enterprise data in Office 365.

Learn about Security Operations and Analytics Platform Architecture, or SOAPA, in Data Protection 101, our series on the fundamentals of information security.

One question is often left unasked in DevOps strategy meetings: what about security?