Fallout From AOL's Data Leak Just Beginning - InformationWeek
08:34 PM

Fallout From AOL's Data Leak Just Beginning

The fallout from AOL's unintended release of personal search data of 658,000 subscribers could include fines, lawsuits, and changes in law and policy regarding search queries.

"If you look through the data, you see that people searched for their own names, their family history, resources in their local neighborhood. If taken together, it's patently false that this data cannot identify individuals. I found one myself, where I think if I gave it five minutes on the phone I could confirm who it was."

Weinstein said AOL is very upset about the release and the company has repeatedly apologized to subscribers. He said the size of the data pool makes it unlikely that AOL can determine which users' information was revealed and, for that reason, it is unlikely individual subscribers would receive notices. He said the published material only represents .3 percent of the total data from three months of 2006 and affected about 1.5 percent of users.

He declined to comment on an employee's blog entry stating that the company should not maintain that type of information in the first place.

"I would note, however, that AOL only retains personal, linked search terms for 30 days now," he said.

Weinstein added that the company was leading an internal investigation, to make appropriate changes and make sure nothing similar ever happens again.

Jonathan Zittrain, a professor of Internet governance and regulations at Oxford University and co-founder of Harvard Law School's Berkman Center for Internet & Society, said during an interview that he did not think AOL violated its privacy agreement. He said the search data is valuable to researchers trying to figure out what goes on in people's minds at a given time. He added that it would be hard for victims to show harm but the release could still have a major impact.

"It may just be one of those watershed privacy events that capture public attention," Zittrain said.

3 of 3
Comment  | 
Print  | 
More Insights
Oldest First  |  Newest First  |  Threaded View
How Enterprises Are Attacking the IT Security Enterprise
How Enterprises Are Attacking the IT Security Enterprise
To learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Register for InformationWeek Newsletters
White Papers
Current Issue
2017 State of the Cloud Report
As the use of public cloud becomes a given, IT leaders must navigate the transition and advocate for management tools or architectures that allow them to realize the benefits they seek. Download this report to explore the issues and how to best leverage the cloud moving forward.
Twitter Feed
InformationWeek Radio
Archived InformationWeek Radio
Join us for a roundup of the top stories on InformationWeek.com for the week of November 6, 2016. We'll be talking with the InformationWeek.com editors and correspondents who brought you the top stories of the week to get the "story behind the story."
Sponsored Live Streaming Video
Everything You've Been Told About Mobility Is Wrong
Attend this video symposium with Sean Wisdom, Global Director of Mobility Solutions, and learn about how you can harness powerful new products to mobilize your business potential.
Flash Poll