Brian Meechan of BBC Wales reports that in 2007, a CD with the personal details of more than 2,300 crime victims was lost in the post by Gwent Police, but none of those affected were ever notified because the police decided that the data could not be accessed. The CD had been password-protected, but the…
Category: Non-U.S.
HK: Privacy Commissioner to investigate police data leakage
As a follow-up to what appears to be one toomany file-sharing leaks, the Office of the Privacy Commissioner for Personal Data has ordered an investigation.
UAE: Newspaper staff salaries leaked on internet
Salaries of Abu Dhabi-based newspaper The National’s entire editorial staff have been posted on Wikileaks. Makt006 Business has more on the impact.
HackersBlog exposes BT.com vulnerability (updated)
“Unu” of HackersBlog reports that they have been able to access at least one of UK telecom BT’s databases through SQL injection: A faulty parameter, improperly sanitized opens the vault to the pretious databases. One can gain access to such ordinary things as personal data, login data, and the like. In the first syntax I…
Scotland: Patient data security overhauled
The BBC reports that NHS Dumfries and Galloway in south west Scotland improved its security after the loss of two memory sticks carrying patient data in May 2008. It now uses USB devices with built-in security, and is nearing completion on a program to fully encrypt all other portable devices. Patient groups had called for…
Telegraph.co.uk hacked, SQL injection (updated)
The HackersBlog crew, who had previously exposed vulnerabilities in a number of security vendor sites and a social networking site, now reports that they were able to exploit an SQL injection vulnerability to access The Telegraph‘s databases, including one that has 700,000 email addresses and passwords of those receiving the paper’s newsletter. Given how many…