Looks like a great way to stop getting donations.
It’s really sad that we had to learn of the breach from haveibeenpwned and not from FairVote Canada themselves.
Really bad form on their part.
- In 2024, Fair Vote Canada sent out “almost 60,000 emails to members and supporters” [Steve Hindle, FVC co-chair].
- This isn’t to say a data breach is acceptable, but Fair Vote Canada is mostly volunteer run.
We have to keep careful as the powerful few would take advantage of this breach in an attempt to manipulate the proponents.
Having powerful enemies isn’t an excuse for your own bad behaviour with the private information of your supporters.
I’m not involved with this situation. I often use 2fa.
2fa does not provide any protection for this. This wasn’t a hack or compromise of an account. It was the personal information of their supporters put up on the public web available to anyone and everyone.
As a Network and System Administrator in the healthcare field I am taken aback by what appears to be FVC’s laze-fair response.
Note that although my information was a part of this, this doesn’t really affect myself. The information published is already publicly available in a number of places online. I have also publicly stated my support for the work of Fair Vote Canada. But that is privileges I enjoy. There are many people for whom having this information leaked would be problematic and potentially dangerous.
Too bad that’s less than half as many as they should have sent.
Agreed, if they don’t know who they should contact, they can just check the dark web.
