Ian Swanson reports:
The Scottish Government has issued an apology after it inadvertently revealed the identities of more than 100 civil servants negotiating severance packages for themselves.
An e-mail sent to employees to update them on the government’s early retirement and voluntary severance process displayed the e-mail addresses of all their colleagues who were receiving the same information.
As soon as the mistake was realised officials tried to retrieve the e-mail, but it was too late to stop the details being circulated.
Read more on the Scotsman.
Just name and email, right? In the context of negotiating severance package. So what else can we infer if we want to do targeted phishing?
Aren’t we having the same conversation about names and email addresses in the Epsilon mess?