Data of Over 4 Million Israeli Citizens Impacted Due to Security Lapse on Likud Party’s Campaign Website

• The database belonging to the party was left open to the public for almost five days before it was secured.
• For each and every person in the registry, the Likud database included the associated full name, address, mobile phone number, and ID number.

An unprotected database belonging to the Likud party had exposed the personal data of over 4 million Israeli citizens. The database was left open to the public for almost five days before it was secured.

What data was involved?

According to a report from Haaretz, the database contained the details of those who supported the party. For each and every person in the registry, the Likud database included the associated full name, address, mobile phone number, and ID number. The database also contained voting preferences of individuals in relation to the Likud party.

For some citizens, social security numbers were also exposed due to the leaky database.

While about half a million Israelis were classified not supporting the party, about 600,000 were deemed supporters and 80,000 were undecided. An additional 1.9 million people were listed as ‘undefined’.

What was the impact?

The leaked information was partially accessible via a website provided by a Likud app. It was found that anybody accessing the site’s ‘subdomain’ would give them full access to the list.

What action has been taken?

The Likud party had immediately blocked access to the site as soon as it became aware. The report states that the database also contained the personal information of the Israeli Prime Minister and his family members. This included their social security numbers and addresses.