Martin Hannan reports: Edinburgh City Council has been criticised by the Information Commissioner’s Office after an investigation into the way the country’s second-largest local authority deals with personal data. […] The most damning criticism of the council was that its lack of an information security manager or overarching information security policy was contrary to…
Month: October 2015
Australian data breach notification laws will not be passed in 2015: Brandis
Yes, let’s enact mandatory data retention laws without any companion protections or data breach notification requirements. Way to go, Australia! Chris Duckett reports: Despite the Joint Parliamentary Committee on Intelligence and Security recommending that Australia have data breach notification laws in place before the end of 2015, Australian Attorney-General George Brandis told the Senate on Tuesday that…
More details emerge on security concerns with Hillary Clinton’s private server
I know Clinton’s use of a private server has become a political issue, but it’s still also an infosec issue for our government. Jack Gillum and Stephen Braun of AP provide the latest revelations: Clinton’s server, which handled her personal and State Department correspondence, appeared to allow users to connect openly over the Internet to control it remotely, according…
Cryptome grudgingly admits to leak of users’ ancient IP addresses
Richard Chirgwin reports: Venerable leak site Cryptome.org has ‘fessed up to a data leak that saw some users’ IP addresses reach the Internet. After initially dismissing data posted by security researcher Michael Best as a mockup, Cryptome founder John Young conceded that a USB key sent to some of the site’s supporters included site statistics…
UK: Derby City Council publishes information on 700 school posts amid pay review saga
John Dickens reports: Details that could reveal the salaries of hundreds of school staff caught up in a controversial equal pay review have been published online, leading to concerns over a data protection breach. Derby City Council has published information on more than 700 school posts on its website, leading to claims the disclosure makes it possible…
Border Agency officer pleads guilty to data breaches
ITV reports: A 50-year-old Guernsey Border Agency officer has pleaded guilty to data protection law offences. Appearing before magistrates, Matthew Walsh admitted four charges, two of intent to secure unauthorised access to data on a government computer and two charges of disclosing personal data without consent. He was granted unconditional bail and is due to…