UK Government Loses 15 Million Private Records

bestweasel writes "The BBC reports that a UK Government department has lost discs with details of 15 million benefit recipients, including names, addresses, date of birth and bank accounts. The head of the department involved, HM Revenue & Customs, has resigned and his resignation 'was accepted because discs had been transported in breach of rules governing data protection' so someone thinks it's not a trivial matter. The Chancellor will try to evade responsibility in the House of Commons at 3.30 GMT. A similar leak of a 'mere' 15,000 records from the same department happened a month or so ago. At that time, they refused to say 'on security grounds' whether the information was encrypted." We just recently talked about Britain's consideration of legal penalties for situations like this. I imagine this incident will weigh on that decision.

25 million now...

Or so says The BBC [bbc.co.uk]...

Re:25 million now...

Aiming for the World Record of record losing!

Re:25 million now...

Weren't these the same idiots who just passed a law to "punish irresponsible data loss"?

No, that would be Parliament. The people who lost the data were HM Customs & Revenue. These are two different bunches of idiots.

Re:

"No, that would be Parliament".

True in theory. The facts of the matter are these:

1. The UK parliament consists of two houses: Commons and Lords. By constitutional convention, the Lords cannot block legislation agreed by the Commons; they can only delay it

Re:

Get your facts straight. HMRC enjoy crown immunity and cannot be prosecuted.

Even if they didn't since they are not a person it's kind of hard to put them in prison.

Personally I think it was honourable of Paul Grey (HMRC's Chairman) to resign.

It's not

Re:25 million now...

Weren't these the same idiots who just passed a law to "punish irresponsible data loss"?

The data isn't lost. It's just been inadvertently shared.

Re:

Loosening the tinfoil a bit... ah, there, feels much better... crawling out of basement... ah, there, the view is much clearer from up here... (but, what is that big glowing yellow/orange thing the sky - that is truly terrifying looking...)

Shutting down

Re:

Obviously, they'll have to block everyone from taking money out of their bank accounts in order to ensure that the bad guys who stole the account numbers can't take money out.

IMHO part of a solution here would be to change things such that the only thing

Re:

What do you need?

Re:

No, the British government are considering a law to punish data loss.

Which IMHO is really the wrong approach. Far better to make the kind of information involved of little value to anyone else.
Which means rethinking the concepts of "identity" and "proof

Re:25 million now...

Indeed. I was going to post the same thing. I'm absolutely shocked they could be so careless. Apparently, it was sent via normal post, without recorded delivery. There's a full summary from the BBC on Alistair Darling's announcement here [bbc.co.uk].

Of particular interest is the fact that it was sent twice. Once again, by recorded delivery, after the initial package was lost in transit.

Re:

How can you be shocked? This is government we're talking about... doesn't matter the country. As soon as you give one group of people anywhere the power to run the whole show, they break down into three categories:

1. Power Brokers - the people who actually

Re:

It WAS sent by courier.

Three times!

The first time this happened was in March - the discs were not lost, and were returned to sender after use, not that that actually makes any difference, since the data could easily have been copied.

The real WTFs here are

• That the database was being sent in it's entirety to the audit office when they only asked for a sample.
  
• That the whole data was sent when they only wanted a subset of the fields.
  
• That junior officers in the civil service have enough access to dump entire databases.
  
• That they trusted a third-party courier instead of delivering it by hand.
  
• That the files were "password protected", which is clearly code for "not encrypted properly" (probably a ZIP file..).
  

Ok, it's probably worse than that though.

Re:Three times!

no no, why would you think that the people in the UK government would be that incompetent? The files were no doubt secured with a 30 character password, with no dictionary words or contiguous number sequences, a mixture of capitals and lower-case, numbers & other characters with not a single person's mother's maiden name in sight. Obviously, with such a complicated password, it would have to be included on a post-it note with the disc so that the audit office could actually use them.

Re:

This is 25 million people who receive child benefit, which is a small amount paid to people with children under the age of 16. So what it really means is that nearly half the population has children.

Re:Three times!

Child benefit is paid to everyone who has a child regardless of how much other income they have.

Re:Three times!

You want worse than that? Take a step back... If 25 million records were lost and the entire population of the UK is 60 million, that means darn near half the population is "on the dole."

It's Child Benefit, not 'the dole'. Child Benefit is paid to the primary carer of all children in the UK, and is not means tested. According to the article, 7.5 million families are affected, which from the figure of 25 million people, results in an average of 3.3333 people's details per family.

Re:Three times!

You are completely right sir! We shouldn't let the incompetent government near us! Lets put all our services in the hands of model corporations like Enron. They are never inefficient!

Re:

Poor Alistair.

He's having a shit week, what with Northern Rock potentially costing taxpayers half a billion, and now this fiasco.

How do you lose 15 million sets of personal data in the post?

Don't the government have couriers for this sort of thing?

However,

Re:

half a billion? no way more. heres what vince cable had to say:

"As we stand at present, every taxpayer in Britain has something approaching £900 of their money at stake in this small mortgage bank following the £24 billion loan (which excludes

For crying out loud

heres what vince cable had to say:

"As we stand at present, every taxpayer in Britain has something approaching £900 of their money at stake[1] in this small mortgage bank following the £24 billion loan (which excludes the less controversial £18 billion in deposit guarantees).

You and Vince Cable need to go learn where money comes from.

It's a bank loan from the central bank. Not a penny of money you have paid in tax has been given to Northern Rock. Not a penny of government borrowing has been given to Northern Rock.

[1]I'm a Lib

Re:

"As we stand at present, every taxpayer in Britain has something approaching £900 of their money at stake in this small mortgage bank following the £24 billion loan (which excludes the less controversial £18 billion in deposit guarantees)

Re:

Yes, but only 15 million of them are part of the government program to help the Russian economy [pttbt.ca]...

Re:25 million now...

That was my first thought. The one good thing about this kind of disaster is that there is now a strong concrete example of why it is a bad idea to give the government any more data than they absolutely need. Whenever someone suggests a massive central database we can say 'you lost 15 million private records, why should we trust you with any more?'

yeah, it'll weigh on them

And the government will give itself a nice fat getout clause so that it's immune when it loses everyone's data, but any company or individual outside the government is in trouble.

Just watch and wait.

Re:yeah, it'll weigh on them

At that time, they refused to say 'on security grounds' whether the information was encrypted.

That should read 'on job security grounds' ...

And they expect us to trust them...

With a nationwide DNA database? Please. They can't be trusted with anything.

Re:And they expect us to trust them...

Ah, but with a national database of everything, the missing disks could be located with a simple search query!

15 or 25?

Hm, must be something in the English-Metric conversion, because TFA says there's 25 million lost.

Anyway, Names and phone addresses aren't really that hard to get, but to have your bank account information compromised must SUCK.

Of course, banks should requi

Trust them with the national ID card program now?

15,000 records for the pension provider and now somewhat like a third of all peopl in the UK sent on what appears to be unencrypted discs. When I queried this with Standard Life they said that they had no choice but to accept the data like that and that the Govt refused to encrypt it. This being the same Govt that wants to hold all of our medical records in one national database, along with all of the ID card details. For the US peope reading, the National Insurance number is synonmous with your SSN, although not of quite as much use for fraud. It's still not something that you want to allow out into the wild.

Trust the Government

The fact that 25million records were being sent via. post burnt on DVDs should give some idea of the level of technical competency in the public sector. Apparently they were being sent to the Audit Office, but why the Audit Office needed an off line copy of the data, and a complete copy at that, isn't addressed: no doubt some ridiculous bureaucratic idiocy that makes Brazil look sane.

The idea of burning an unencrypted copy of your sensitive data to a DVD and handing it to a random delivery company should horrify even the most incompetent sysadmin or DBA. Apparently no one in HM Customs & Revenue thought anything of it.

These are the sorts of people who want to build a massive database of all our personal details and tie them to ID cards. They tell us the data will be "perfectly safe". I wouldn't trust them to run a mail server.

Re:

Password protected? I think that's soon to become NewSpeak for "we didn't use proper encryption". Knowing what I know of some of the incredibly ridiculous levels of beauracracy inside the UK public sector (although I've never been invloved with anything ou

Re:

Thanks for pointing this out, which I entirely agree with. I also agree with the first response to your post, which is that it's like this all through the private sector, too. The difference is that government organisations actually have to be directly ac

EpicRaidGet

Oh wow. I wonder who is behind the lost records?

Where's the Backup?

Didn't anyone learn ANYTHING from the last 5,000 years of record keeping?

Re:

Yes... destroy all the records! Leave 'em guessing!

Seriously, it's preposterous to talk of data retention strategies and forcing people to be part of national data banks when there's absolutely no talk about how you're going to make it secure. I would li

This give us hope

We've been heading towards the totalitarian Peoples Democratic Republic of (formerly Great) Britain for some time now. This kind of thing is actually encouraging.

In a country where you are watched by security camera most of the day, and can be detained without charge for longer than anywhere on Earth, it is reassuring to note that the UK Government is so incredibly incompetent that there will always be a way to escape. No need for tunnels, gliders, or under the floor of a Trabant -- it should be pretty much possible to just walk through the border with a library card altered in crayon.

Re:

"If you want a vision of the future, imagine Brazil (the film) run by Dilbert's boss - forever."

Those who ignore history....

Sure glad that this has never happened before... [slashdot.org]

I wonder how they'll ever figure out how to punish the offenders.... [slashdot.org]

Offering 100,000 - 1 odds it was clear text

At that time, they refused to say 'on security grounds' whether the information was encrypted.

Then it wasn't. If it had, the first thing out of their mouths would have been "relax, it was all encrypted".

Re:Offering 100,000 - 1 odds it was clear text

Exactly - all they'd have to say is "it's encrypted using AES-256/whatever, everyone whose details are on the disk will be dead by the time it's decrypted".

Although, considering that the government is using the time taken to break decryption as an excuse to raise the time they can hold 'terrorists' without charge, they probably want to avoid mentioning that.

Re:Offering 100,000 - 1 odds it was clear text

- STOP BUGGERING ME!!

I strongly suspect that this doesn't mean what you think it means...

Oh please.

"The Chancellor will try to evade responsibility..." In what way could be held responsible? The data was copied and sent in clear breach of the agency's (and the Government's) rules. The last time I checked, it wasn't the Chancellor's responsibility to monitor personally all packages sent by Government agencies. Had the security breach happened due to actions which did NOT breach any rules then I might agree with you, however this is not the case here. Put it this way: If ministerial resignation (and that is what you are implying should happen) is to follow every breach of security then that is a green light to every ne'er-do-well and Tory malcontent working in Government to start posting confidential data left, right and centre.

Just wait till it's our DNA and Fingerprints

At some point, if the UK government gets its way, everyone will have their DNA and fingerprints stored in a central database. How long will it be before some backup hard drive goes missing with all the data?

Just trying to help

Did they look behind the couch?

That's where I always lose things.

They might be there.

Why refuse to tell if it was encrypted or not?

Look... It's not going to help prevent authorized access by keeping it secret.

If it's not encrypted, when the files are opened it will look like (or something really obvious):
Joe Public DOB: xx-xx-xxxx 12345 Main Street .... balh blah blah..

If it is encrypted it will look like:
982n5o39y8h5014u9m9p!#$`15235098h14n12#$!@3476bwfSFR2387rn@!#12987ksafdkjD

It doesn't take a fucking genious to figure out if a file is encrypted or not. And its not like they are going to told what alog it is encrypted with if it is encrypted. I can see no reason NOT to tell the public if the data is encrypted or not, so the public knows what kind of precautions or steps may be needed to protect their identity.

Re:

Child benefit is given to *everyone* - my sister in law takes home £40k and still gets it. http://www.hmrc.gov.uk/childbenefit/index.htm [hmrc.gov.uk] so some peoples accounts will be ripe for plucking if there is enough data.

Re:Listen up, Brits

Not offended old bean, we were more than pleased to get rid
of that bunch of God-bothering homophobic nutjobs. Enjoy the
Turkey.

Toodle pip!

Re:

Why are UK government IT projects always doomed to failure?

Because civil servants have no idea how to protect themselves from getting shafted by software suppliers, and no financial incentive to learn, essentially. Also, the government has an extreme aver