PRC Possession of a List of Likely Leaked or Compromised Data Including U.S. Voter Data and PII
A heavily redacted government intelligence product describes a PRC-related subject’s possession of a list of apparently leaked or compromised datasets that included U.S. voter-registration records and other personally identifiable information.
The product says a redacted PRC-related subject possessed a document in 2019 cataloguing datasets; only a comparatively small portion concerned U.S. entities, while most entries involved targets elsewhere. It assesses that many entries were PII collections and says several were characterized as voter-registration records.
“most of the entries were targets in other countries.”
The table lists an “Unspecified U.S. voter data” set as 204,822,241 records (45 GB), dated 2016, apparently including voters’ names, ages, phone numbers, and addresses. A note says a downloaded file indicated only the subject’s possible possession of this data, preserving uncertainty.
The table also lists two unidentified state voter databases with 1,746,069 and 7,893,248 records, both dated 2017. The visible fields include voter IDs, names, current and former addresses, birth dates, gender, phone numbers in one set, and citizenship information in the other.
Beyond voter files, the visible list includes other potentially compromised U.S. data, including a 28-million-record citizen medical database and material labeled F-15-related data. Extensive black redactions obscure identities, volumes, dates, and contents across much of the product, so the visible table does not establish how each item was obtained or used.
“28 million records”
Data table, unspecified U.S. citizen medical databaseSource: page 5 ↗