UK's electoral register hacked
Discussion
And once they found out, the authorities only took ten short months to let everyone know.
https://www.bbc.co.uk/news/uk-politics-66441010
The amount of data exposed here is shocking. And the hackers had access to their systems for over a year!!
https://www.electoralcommission.org.uk/privacy-pol...
This is quite far reaching IMHO
Personal data affected by this incident:
Personal data contained in email system of the Commission:
Name, first name and surname.
Email addresses (personal and/or business).
Home address if included in a webform or email.
Contact telephone number (personal and/or business).
Content of the webform and email that may contain personal data.
Any personal images sent to the Commission.
Personal data contained in Electoral Register entries:
Name, first name and surname
Home address in register entries
Date on which a person achieves voting age that year.
Electoral Register data not held by the Commission:
[/b]Anonymous registrations[b]
Address of overseas electors registered outside of the UK.
https://www.electoralcommission.org.uk/privacy-pol...
This is quite far reaching IMHO
Personal data affected by this incident:
Personal data contained in email system of the Commission:
Name, first name and surname.
Email addresses (personal and/or business).
Home address if included in a webform or email.
Contact telephone number (personal and/or business).
Content of the webform and email that may contain personal data.
Any personal images sent to the Commission.
Personal data contained in Electoral Register entries:
Name, first name and surname
Home address in register entries
Date on which a person achieves voting age that year.
Electoral Register data not held by the Commission:
[/b]Anonymous registrations[b]
Address of overseas electors registered outside of the UK.
Louis Balfour said:
And once they found out, the authorities only took ten short months to let everyone know.
https://www.bbc.co.uk/news/uk-politics-66441010
Prosecutions/action? Na, course not https://www.bbc.co.uk/news/uk-politics-66441010
Chimune said:
Chap on r4 at 1pm today:
The data leaked is the electoral roll register - which is publicly available anyway.
But it also contains the details of those who opted out of the public register. Thats vaulable and previously non-public data.
The publicly available register is still not public/open data, you can't (as far as I know) download it freely, you need to pay a fair few £.The data leaked is the electoral roll register - which is publicly available anyway.
But it also contains the details of those who opted out of the public register. Thats vaulable and previously non-public data.
i4got said:
Chimune said:
Chap on r4 at 1pm today:
...
But it also contains the details of those who opted out of the public register. Thats vaulable and previously non-public data.
Non public - but is available at a cost to pretty much any company that wants it....
But it also contains the details of those who opted out of the public register. Thats vaulable and previously non-public data.
Southerner said:
Louis Balfour said:
And once they found out, the authorities only took ten short months to let everyone know.
https://www.bbc.co.uk/news/uk-politics-66441010
Prosecutions/action? Na, course not https://www.bbc.co.uk/news/uk-politics-66441010
E63eeeeee... said:
Southerner said:
Louis Balfour said:
And once they found out, the authorities only took ten short months to let everyone know.
https://www.bbc.co.uk/news/uk-politics-66441010
Prosecutions/action? Na, course not https://www.bbc.co.uk/news/uk-politics-66441010
bigpriest said:
E63eeeeee... said:
Southerner said:
Louis Balfour said:
And once they found out, the authorities only took ten short months to let everyone know.
https://www.bbc.co.uk/news/uk-politics-66441010
Prosecutions/action? Na, course not https://www.bbc.co.uk/news/uk-politics-66441010
ICO has decided that instead of fining govt organisations, they’ll just write them a nasty letter telling them how much they would have been fined:
https://ico.org.uk/about-the-ico/media-centre/news...
From reading the ICO court cases, private sector gets nailed to the wall for any divergence from a very strict (and arguably unrealistic) view of how security should be done. So yes they could take action against the victims, in theory only if negligent, but in reality most orgs could get fined if they leaked PII
https://ico.org.uk/about-the-ico/media-centre/news...
From reading the ICO court cases, private sector gets nailed to the wall for any divergence from a very strict (and arguably unrealistic) view of how security should be done. So yes they could take action against the victims, in theory only if negligent, but in reality most orgs could get fined if they leaked PII
Edited by wombleh on Tuesday 8th August 19:04
bhstewie said:
Unless I've misunderstood and assuming you haven't literally sent them specific personal information it reads as if the stuff taken is fairly low level info like name and address.
It's fairly low level, but it's a comprehensive and up-to-date list of almost every adult in the UK, grouped by specific address (ie. people who live with each other). I don't think there has been such a huge leak of such accurate/official data before in the UK.For example a person with the database would instantly and immediately know the names of people living in, for example, the St George's Hill estate.
Gassing Station | News, Politics & Economics | Top of Page | What's New | My Stuff