Breach cyber

Gladney Center for Adoption

Jul 18, 2025 1 min read
Gladney Center for Adoption

A massive set of unprotected records linked to the Gladney Center for Adoption was discovered online. The database, containing 2.49 gigabytes and over 1.1 million records, included sensitive information about children, adoptive parents, birth families, and internal staff. The exposed data included names, contact details, case notes, private assessments, and email metadata records. This leak posed significant risks, such as social engineering, fraud, and potential impersonation attempts.

Source: https://hackread.com/massive-data-leak-texas-adoption-agency-million-records/

TPRM report: https://scoringcyber.rankiteo.com/company/gladneycenter

"id": "gla559071825",
"linkid": "gladneycenter",
"type": "Breach",
"date": "7/2025",
"severity": "60",
"impact": "3",
"explanation": "Attack with significant impact with internal employee data leaks"
{'affected_entities': [{'customers_affected': '1.1 million records',
                        'industry': 'Adoption Services',
                        'name': 'Gladney Center for Adoption',
                        'type': 'Non-profit Organization'}],
 'attack_vector': 'Unprotected Database',
 'data_breach': {'data_encryption': 'No encryption',
                 'number_of_records_exposed': '1.1 million',
                 'personally_identifiable_information': True,
                 'sensitivity_of_data': 'Highly sensitive',
                 'type_of_data_compromised': ['Personal information',
                                              'Health-related information',
                                              'Email metadata']},
 'description': 'Cybersecurity researcher Jeremiah Fowler discovered a massive '
                'set of unprotected records linked to the Gladney Center for '
                'Adoption, left online without a password, without encryption, '
                'and accessible to anyone.',
 'impact': {'data_compromised': '1.1 million records including names, contact '
                                'details, case notes, private assessments, '
                                'personal histories, adoption denials, family '
                                'backgrounds, substance use, legal matters, '
                                'email metadata, healthcare and social service '
                                'provider outreach',
            'identity_theft_risk': True,
            'systems_affected': ['CRM platform']},
 'initial_access_broker': {'entry_point': 'Unprotected database'},
 'lessons_learned': 'Encrypt data, limit internal access, regularly audit '
                    'systems, train staff on cybersecurity hygiene, archive or '
                    'delete older data',
 'post_incident_analysis': {'root_causes': 'Unprotected and unencrypted '
                                           'database'},
 'recommendations': 'Encrypt data, limit internal access, regularly audit '
                    'systems, train staff on cybersecurity hygiene, archive or '
                    'delete older data',
 'references': [{'source': 'Hackread.com'}],
 'response': {'remediation_measures': 'Data was secured the following day'},
 'title': 'Gladney Center for Adoption Data Leak',
 'type': 'Data Leak',
 'vulnerability_exploited': 'Unprotected and unencrypted database'}
Published by
Jeremy C
Jeremy C
You might also like
Great! Next, complete checkout for full access to Rankiteo Blog.
Welcome back! You've successfully signed in.
You've successfully subscribed to Rankiteo Blog.
Success! Your account is fully activated, you now have access to all content.
Success! Your billing info has been updated.
Your billing was not updated.