Patronum Logo
00%
cookie-iconThis website uses cookies.Learn MoreGet Started

Google Group data exposure due to misconfiguration at Weather Company and SpotX

By Patronum

October 11, 2017

Read Time: < 1 mins

    Last week, RedLock identified that many companies running Google Workspace including Weather Company, Fusion Media Group, The Onion, Freshworks, and SpotX were affected by a security issue caused by a misconfiguration of Google Groups.

    In the report, RedLock indicated that “hundreds” of Google Groups have publicly exposed messages containing personally identifiable information (PII) including employee salary compensation, sales pipeline data, customer passwords, names, and home addresses. This exposure was caused due to Google Groups Sharing Options being set to “Public on the Internet” instead of “Private“.

    Google Group

    Although this isn’t a security issue itself it does show that a simple oversight can be potentially devastating for businesses. It is recommended that be default all Google Groups should be configured as “Private”, for further instructions see the following support articles from Google.

    Related Blogs

    The 4 Quadrant Approach for Google Drive File Management: Ensure Compliance, Protect Sensitive Data, & Supercharge Efficiency Image

    By Patronum

    August 02, 2024

    The 4 Quadrant Approach for Google Drive File Management: Ensure Compliance, Protect Sensitive Data, & Supercharge Efficiency
    Read MoreAbout This Blog
    Email Signature Design Tips to Create Your Own Amazing Email Signatures Image

    By Patronum

    July 12, 2024

    Email Signature Design Tips to Create Your Own Amazing Email Signatures
    Read MoreAbout This Blog
    Beyond the Sign-Off: Leveraging Email Signature Analytics for Strategic Insights Image

    By Patronum

    June 14, 2024

    Beyond the Sign-Off: Leveraging Email Signature Analytics for Strategic Insights
    Read MoreAbout This Blog