Out of Commission: How the Oklahoma Department of Securities Leaked Millions of Files

The UpGuard Data Breach Research team discovered and reported a storage server with exposed data belonging to the Oklahoma Department of Securities. Public access was removed on the same day it was reported, preventing further downloads. The exposed data, generated over decades, contained personal information, system credentials, internal documentation and communications. The data had been exposed by an unsecured rsync service at an IP address registered to the Oklahoma Office of Management and Enterprise Services.