All the latest UK technology news, reviews and analysis
|
|
|
12 Dec 2007
The government has admitted that it has lost yet more data, after two discs from the Driver and Vehicle Agency in Northern Ireland got lost in the post.
The discs were being sent to the agency's headquarters in Swansea and contained the details on 7,685 vehicles and more than 6,000 vehicle owners. The data includes the owner's name, address, registration mark of the vehicle, chassis number, make and colour.
Northern Ireland's Environment Minister Arlene Foster said there was little chance of the discs turning up, but that no financial information was stored on them.
Alan Bentley, regional vice president of security managers Lumension (formerly PatchLink) commented: "This latest security blunder will no doubt undermine consumer confidence. Unless decisive and effective measures are taken to protect data leakage, exposure to identity theft will get worse. Unfortunately, even the most vigilant consumers are not immune – it is no use shredding your personal details if they keep ending up lost in the postal system.
"The proliferation of data loss due to the inappropriate or sometimes criminal use of removable media devices has reached alarming levels and these publicised incidents are becoming commonplace. The only way to eliminate data loss from removable devices is to take control of the flow of inbound and outbound data from your endpoints and encrypt the data during transmission."
One of the problems is that the data on the discs is unencrypted and can be accessed by anyone without the need to crack or guess a password.
Brendan Magee, chief executive of the Driver and Vehicle Agency, told the BBC he understood why customers would be concerned.
"We were undertaking a review of how we transmit all this information. Unfortunately, this incident had taken place before we completed the review and we deeply regret it and we regret the embarrassment we caused to the customers. "
"It wasn't encrypted. This was one of the problems we had identified through our review, that this was an actual weakness. We are now looking at alternative methods of transporting this information."
Related articles
Related jobs
Poll
What is the most important IT priority for your company this year?
Hands on with the highly anticipated Android 4.0 Ice Cream Sandwich hybrid tablet
Connect with V3.co.uk
This paper focuses on a series of best practices and techniques for development teams looking to improve their software development processes
Why good data management at all levels is essential in the modern business (video, 6mins)
Project Manager (BI) 6 Months Contract – to...
Desktop Support Manager 3 month contract - to start...
/ Programme Manager / 45k / Significant benefits / London...
Automation Test Manager Selenium London 75k Automation...
Keep up to date with the latest products, services and technologies from the world's leading IT companies. IThound.com brings you over 2,000 white papers, case studies and analyst reports.
Do you agree?
Chief executive has no knowledge of data safety.
So Brendan Magee needs to review whether an unencrypted disk is unsafe, GOOD GRIEF. After the previous disaster he should have immediately said, BEFORE the review, ALL disks get encrypted. It is commonplace knowledge how to do it and straightforward to achieve. Has he no knowledge of data safety at all? How on earth did he get promoted to his position?
Posted by: John Cooke 12 Dec 2007
DVLA iinformation loss
The significant thing here is that the information could be used to support fraudulent applications, not that "no financial information was lost" Oh yes it was - these morons should seek employment as a pantomime Dames.
Posted by: t j mills 12 Dec 2007