ODIN Intelligence website removed due to hacker request breach TechCrunch
The website for ODIN Intelligence, a company that provides technology and tools to law enforcement and police agencies, had its interface changed on Sunday.
The hack apparently happened a few days later wired report that an app developed by the company, SweepWizard, which allows police to manage and coordinate raids across multiple agencies, has a critical security flaw that exposes the personal information of police suspects and sensitive details of upcoming police activities on the open web.
ODIN provides applications, such as SweepWizard and other technologies, to law enforcement agencies. It also offers a service called SONAR, or Sex Offender Notification and Registration system, which is used by state and local law enforcement to remotely manage sex offenders. register. But the company is also the subject of controversy. Last year, ODIN was found to be marketing its facial recognition technology to identify the homeless and describe those abilities in callous and condescending terms.
It’s not clear who fooled ODIN’s website or how the intruders broke in, but a notice left quoted ODIN’s founder and chief executive, Erik McCauley, who largely dismissed the report. Wired’s recent report shows that the SweepWizard application is unsafe and leaks data.
“And so we decided to hack them,” the statement left on the ODIN website reads.
The text of the interface deletion is unclear as to whether the hackers obtained data from ODIN’s systems, as their statement, “all data and backups were shredded”, suggests that there may have been an attempt to delete the company’s data stores. However, the deletion note noted three large archives, totaling more than 16 gigabytes of data, each named in relation to ODIN, sex offender data, and the SweepWizard app, suggesting that the hacker can at least have access to corporate data.
The interface change also includes a set of Amazon Web Services keys, which appear to belong to ODIN. TechCrunch could not immediately confirm that the keys belonged to ODIN, but the keys appear to correspond to an instance on AWS’ GovCloud, which contains more sensitive police and law enforcement data.
ODIN CEO Erik McCauley did not respond to an email from TechCrunch with questions about the skin removal and the apparent violation, but ODIN’s stripped-down site has been offline for some time. short after that.