CheckPeople has an open NoSQL database on a server with a Chinese IP address, exposing 56.25 Million US residents, exposing names, addresses, phone numbers and ages.
Although the information is likely to be compiled from public records, the mass volume and work involved in aggregating all these public personal records in an organized repository is disturbing. Anyone can retrieve and mash this data with other sets (such as voting registration records, social profiles, and more) that can lead to bigger, more malicious criminal activity.
Meanwhile, Chinese government agencies now have easy access to 56.5 million US residents in one handy, formatted database.
The repository's contents are likely scraped from public records, though together provide rather detailed profiles on tens of millions of folks in America. Basically, CheckPeople.com has done the hard work of aggregating public personal records, and this exposed NoSQL database makes that info even easier to crawl and process. "In and of itself, the data is harmless, it's public data, but bundled like this I think it could actually be worth a lot to some people," Lynx told El Reg this week. "That's what scares me, when people start combining these with other datasets."