BreachExchange mailing list archives
MOJ fined over prison data leak
From: Lee J <lee () riskbasedsecurity com>
Date: Tue, 22 Oct 2013 19:00:45 +1100
http://www.itv.com/news/wales/story/2013-10-22/moj-fined-over-inmates-records/ he incident was reported to the Information Commissioner's Office, which found that a lack of audit trails and other procedures meant the breach would have gone unnoticed if the recipients had not reported it. An internal investigation found that the same error had occurred on two previous occasions in the previous month, with details sent to other inmates' families. Police and a member of prison staff were sent to the recipients' home addresses and checks were made to ensure the files had been deleted. The data breach came to light after one of the recipients contacted the prison in 2011 saying they had received an email from the prison clerk about an upcoming visit, along with a file containing 1,182 prisoners' names, ethnicities, addresses, sentence length and release dates. [...]
_______________________________________________ Dataloss Mailing List (dataloss () datalossdb org) Archived at http://seclists.org/dataloss/ Unsubscribe at http://lists.osvdb.org/mailman/listinfo/dataloss For inquiries regarding use or licensing of data, e-mail sales () riskbasedsecurity com Supporters: # OWASP http://www.appsecusa.org # Builders, Breakers and Defenders # Time Square, NYC 20-21 Nov o()xxxx[{::::::::::::::::::::::::::::::::::::::::> Risk Based Security (http://www.riskbasedsecurity.com/) Risk Based Security offers security intelligence, risk management services and customized security solutions. The YourCISO portal gives decision makers access to tools for evaluating their security posture and prioritizing risk mitigation strategies. Cyber Risk Analytics offers actionable threat information and breach analysis.
Current thread:
- MOJ fined over prison data leak Lee J (Oct 24)