Due to a bug on the Small Business Association’s (SBA) website, personal information from almost 8,000 businesses was reportedly exposed online. The leak affected businesses submitting Economic Injury Disaster Loan (EIDL) applications.
The problem with the website made applicants’ Social Security numbers, addresses and other personal information visible to others using the portal. A representative from the SBA told Business Insider that upon becoming aware of the issue, they shut down the affected part of their site, fixed the problem and reopened the portal.
CNBC reports that the SBA has notified those impacted by the leak and offered them one year of identity theft protection services. It also reports that, at present, there is no evidence that any of the information was misused and that the information was only visible to other users of the loan application portal.