Coleman donors express ‘extreme anger,’ fear, worry after breach

I reported all this on Politics in Minnesota back in January but apparently no one noticed (at least none of the people you talked to). My PIM story was cited by the person that wrote to Wikileaks, as well! Original story:
http://www.politicsinminnesota.com/2009/jan30/1770/epic-recount-website-fail-one-dot-one-dot-one-dot-one

Thanks for the comment, Dan. We did notice, but we’d already covered it by the time you posted. Our Jan. 28 stories:

Did Coleman campaign fake Web site crash?
http://minnesotaindependent.com/24761/disenfranchised-voters-crash-colemans-site-unlikely-says-blogger

“‘Crashgate’ reveals unprotected donor database on Coleman’s site
http://minnesotaindependent.com/24817/crashgate-reveals-unprotected-database-on-colemans-site

I also found it weird that Dan Feidt didn’t credit nor link the MNindy piece in the PIM piece back in January.

Oh noes! I think either I didn’t see it at the time – or else the version that was up circa 2 PM Friday that week didn’t have much additive to it beyond story as it was on Publius. It was a definitely a rush job, hence the corrections for Brodkorb & Kunin (actually it was the worst story I’ve ever put out in terms of corrections!!). Go figure. :-/

Why did this just become a story now? Like the prior comments mentioned, this was reported in late January. Something smells funny about this being a story just now. Besides, even though it was known the database was open, did anyone actually do anything with it? If not, that seems to prove there was nothing untoward. If someone did get credit card numbers, they seem to have been awfully patient about using them. Besides, these people accusing Franken still have to show he or his staff downloaded and used the database. The lack of security doesn’t prove anyone did anything with the information.

No worries, Dan! Eric, I don’t know why Wikileaks.org came out with it now; perhaps they just received it? I had been planning a more in-depth story on the database, which I learned about in January, but Wikileaks.org’s actions preempted that. If Chris’ sampling of donors is any indicator, there might have been people who downloaded the file for nefarious reasons. (See Lars Hydle above.)

Wow, what a bunch of whackos. George Soros is hacking the least secure website around?

This looks like incompetent IT staff at the Coleman office. Might be the webmaster’s fault, or the project manager’s fault, but it’s not George Soros.

How ’bout that self important lawyer? Gonna’ file a class action suit…………..I thought the Republicans were against class action suits?

Coleman’s people left this information out in the open. Someone found it and alerted them They did nothing until now. What a bunch of jokers.

My tire was flat. Obviously George Soros stuck a nail in it. He’s rich, he can afford nails, what more proof do we need?

Achoo! Excuse me. Soros must have put something in the air.

I just heard Noah Kunin on The Uptake say Coleman locked down the database hours after it was revealed to be open. So unless they’re claiming someone hacked in since, it looks like the issue was that a month had gone by and they hadn’t told anyone in the database that their information was vulnerable, which must violate some law. Whoever told wikileaks must have intended to expose this negligence, not to expose the information.

What a coincidence.

Just as Coleman’s bid for the senate is finally about to fizzle, a stale story (along with Coleman’s dire suspicion that it’s all a “dirty trick”) hits the net.

Pathetic Republicans just don’t understand the concept of free elections.

1. Campaign
2. Count votes

tom hayes hit the nail on the head.

“George Soros and his boys have a massive number of experts who try to hack into the Coleman Website.” —[Donor from 301 area code who wouldn't give his name] & ““I have no idea who you are or what the Minnesota Independent is. But if you are some shill for the Franken campaign, leave me alone. I loathe, hate, despise and detest Franken and all of his supporters. I believe that this so-called hacking is just more dirty tricks by that dirtbag and his pals. Please do not contact me again.” —Gary Govro”

need to be watched by authorities. These are the really wackos that can wreak havok through a civilized society. I guess it says volumes of Mr. Coleman if this is the sort of person who supports him.

I find it hypocritical that a website that claims to be “a center for independent media site” would find it necessary to post 4 articles in 8 hours on this story. Sure, its a big deal, but 4 articles in 8 hours? There is enough misinformation in politics, why do you have to contribute? I don’t mind partisan attitudes, but to do it under the guise of an “independent group,” its wrong and manipulative.

Read the wikileaks story about it. http://www.wikileaks.org/wiki/The_Big_Bad_Database_of_Senator_Norm_Coleman

Wow – these people have no real idea of how this really happened.

Coleman should have never had those credit card numbers and Especially the cvs security numbers on that spreadsheet. That is against the law!
Those CVS numbers should be shown on any records after using them in a transaction!

BTW – If this was done in Jan. there is a way to see IP addys that accessed that site. If there was access to the spreadsheet (I have seen it myself – the copy that was published) all you would have to do is copy and paste it. There was problems with that website – a Coleman staff or technical issue and it – anyone could have gotten that informatio then = right? NO big mystery here – probably no hacking either. A glich in user or software and tada – people copy and past personal info listed(which by law some of it should not have been kept at all). This has to do with Coleman staff and Coleman himself. They should have let the people on the list know immediately. By not doing this – they have risked their supporters and donors privacy and financial security. Too bad.

I made a picture to commemorate this occasion: http://www.flickr.com/photos/iangreenleaf/3348439314

Where is Joe Souceray’s response?

Like it or not (I don’t necessarily), since Julius Baer, Wikileaks has the first amendment and a lot of friends of the court on their side. I wouldn’t blame Franken or George Soros with this list of friends:

http://en.wikipedia.org/wiki/Bank_Julius_Baer_vs._Wikileaks_lawsuit

Isn’t anyone saying the Coleman campaign has broken the law? There are *extreme* standards of security for companies that save credit card data. Obviously the Coleman campaign has broken these laws and should be liable for the damage.

I must ask one of the so called victims Tom Martland, who is the Idiot now? As for the blaming by some of these so called adults that donated to Coleman I must say your name calling is juvinile, place the blame where it belongs, on the Coleman Campaign that set-up this mess and then never contacted you after they knew about it in january, now that is just plain irresponable on Colemans part. Quit your partisan blaming for something that was totally the fault of a politicain who does not care enough to notify you you credit card information has leaked out. DUH

I love when you guys scoop the networks and newspapers in the Twin Cities. Thanks for the great coverage of this, and I hope the TV news corrects themselves and tell the whole story–all they’ve done so far is essentially let Coleman’s camp write the press release, so it’s been reported with as little negative spin on ol’ Norm as possible.

Norm, if you weren’t so busy making time for your girlfriend while your wife’s busy with her “acting career” in SoCal, you’d be a better manager of your own campaign.

Angela, how dare you misstate the facts. Norm Coleman doesn’t have a girlfriend. He has several.

You gotta love these donors. Coleman screws up and exposes their credit card information to the public and it is all a “George Soros” plot to take down Coleman.

Is there a conservative anywhere in this world who is able to take responsibility for something they caused to happen.

BTW, it IS NOT hacking if someone can find information on a website in an unprotected directory.

To all those misguided Coleman supporters blaming Al Franken, your anger is misplaced. It’s exceedingly unlikely that Franken’s people had anything at all to do with this.

It was Coleman’s office that was extremely – I would even say criminally – negligent with your sensitive financial data. I’m a web developer, and I can tell you that what Coleman’s people did was unbelievably stupid. They invited disaster. They put your credit card info in a place that could easily be accessed by anyone, and that’s exactly what happened. The negligence was so blatant that it wasn’t even a question of whether your data would be compromised – it was only a question of when. They didn’t put a link to the data on their site saying, “Come and get it!”, but they may as well have.

You have every right to be angry, but it’s Coleman’s people who deserve your anger.

Let me put it another way. Suppose you buy a car from your favorite local dealership, who then leaves your financial paperwork with all your personal data lying in a box on the curb. Someone happens along, picks it up, and may or may not use it for illegal purposes. Who do you blame? Do you assume that the “thief” is working for the competing dealership across the street and blame the competitor? Or do you blame your dealership for being careless with your financial data in the first place?

Typical Republicans:

Their favorite politician screws up–or conducts illegal activity–that directly impacts them, and who do they blame? “Liberals,” George Soros and his band of hackers, etc. Give me a break!

Coleman’s campaign PUBLISHED this information on their website–it was not hacked.

They knew about it, and rather than doing the right thing and warning all of their donors, they chose to do nothing.

I truly feel sorry for anyone who now has their personal info. exposed for everyone to see. You should be very angry! It is healthy! But for god sakes blame the right people!

[...] has royally pissed off Norm Coleman’s donors…NOT something a candidate wants to do if he is running to regain his old seat he just narrowly [...]

The coleman website was developed and hosted by a 3rd party. The site structure, database, server and security configuration was handled by a website developer. I’m not going to name the company because it’s not hard to find out.

This type of problem could have happened to the Franken campaign, the Obama campaign, or any one of your businesses. In fact, I’ve seen this type of problem with vendors many times over my career. Rarely do the public (or customers) hear about these issues. Choose your vendors carefully.

Laying blame on the Coleman campaign for this data breach is misdirected. You can argue all you want about their public relations but the lack of data security isn’t their fault. I’m sure they signed a contract with a vendor and believed they were getting quality services. If their credit card vendor’s servers were hacked would you blame the campaign? Of course not. It’s not like Coleman’s staff bought a server, threw linux on it, and tried to play hoster. They wouldn’t know the difference between Apache and an American Indian.

I know that some of the supposed “outrage” posted here is nothing but political astroturfing. BTW, I’ve got a sale going today on tinfoil hats. Two for one.

This type of problem could have happened to the Franken campaign, the Obama campaign, or any one of your businesses.

If they were stupid enough to hire an incompetent web designer. But they’re not.

Coleman is kind of a shining light for moronitude in this instance.

I agree with gbear. People like Franken and Obama are 100% pure and perfect because they are Democrats and I’m a Democrat, too, and that makes me 100% pure and perfect, too!