At the time, I didn't give too many details about how the hacker was able to obtain the entire
database for security reasons, but I will share more details now.
MLSs that allow persistent downloading of the MLS
database by participants
for display or distribution on the Internet or by other electronic means may require that participants» websites (1) utilize appropriate
security protection, such as firewalls, provided that any
security obligations imposed on participants may not be greater than those employed concurrently by the MLS, and / or (2) maintain an audit trail of consumer activity on participants» websites and make that information available to the MLS if the MLS has
reason to believe that a participant's IDX website has caused or permitted a breach in the
security of the data or a violation of MLS rules related to use by consumers.