Looks like a great way to stop getting donations.

  • drewaustin
    link
    fedilink
    English
    arrow-up
    8
    ·
    2 months ago

    It’s really sad that we had to learn of the breach from haveibeenpwned and not from FairVote Canada themselves.

    Really bad form on their part.

    • AlolanVulpixM
      link
      fedilink
      English
      arrow-up
      4
      ·
      2 months ago
      1. In 2024, Fair Vote Canada sent out “almost 60,000 emails to members and supporters” [Steve Hindle, FVC co-chair].
      2. This isn’t to say a data breach is acceptable, but Fair Vote Canada is mostly volunteer run.
      • Sunshine (she/her)M
        link
        fedilink
        English
        arrow-up
        2
        ·
        2 months ago

        We have to keep careful as the powerful few would take advantage of this breach in an attempt to manipulate the proponents.

        • drewaustin
          link
          fedilink
          English
          arrow-up
          1
          ·
          2 months ago

          Having powerful enemies isn’t an excuse for your own bad behaviour with the private information of your supporters.

            • drewaustin
              link
              fedilink
              English
              arrow-up
              1
              ·
              2 months ago

              2fa does not provide any protection for this. This wasn’t a hack or compromise of an account. It was the personal information of their supporters put up on the public web available to anyone and everyone.

              As a Network and System Administrator in the healthcare field I am taken aback by what appears to be FVC’s laze-fair response.

              Note that although my information was a part of this, this doesn’t really affect myself. The information published is already publicly available in a number of places online. I have also publicly stated my support for the work of Fair Vote Canada. But that is privileges I enjoy. There are many people for whom having this information leaked would be problematic and potentially dangerous.

        • drewaustin
          link
          fedilink
          English
          arrow-up
          2
          ·
          2 months ago

          Agreed, if they don’t know who they should contact, they can just check the dark web.