Bonum Certa Men Certa

Novell Autocomplete Failure or Human Failure Leaks Confidential UK Database

GroupWise client



Summary: Policemen in the UK are left red-faced after a software screwup -- caused in part by the user -- which compromised the privacy of many people

Novell's fault or purely a human error? You decide. Software should be designed to minimise human error.

Police send Reg hack CRB check database

Investigators are blaming human error for the data breach, rather than the system design. It occurred when the author of the email — a member of the force’s CID data management unit — used the autocomplete function in Novell’s email software to include the journalist’s address along with those of five Gwent Police officials in the “CC” field of the message.


'Serious' data breach at Gwent Police

The mistake is said to have occurred when the author of the email — a member of the force’s CID data management unit — used the auto-complete function in Novell’s email software to include the journalist’s address along with those of five Gwent Police officials in the “CC” field of the message. The Register email address had been automatically saved by the system after it was used to submit two unrelated Freedom of Information requests last year.


Hitherto, there has been no response from Novell, but it would be interesting to know if there's a deficiency in Novell's software that makes such an error easier to make and/or harder to spot?

Recent Techrights' Posts

FSFE: Donate to Us to Co-Fund With Microsoft the Unpaid Underage Labour, YH4F
Latest from FSFE
Links 07/09/2024: China's Financial "Bond" to Africa and Attempts to Postpone Trump Criminal Cases
Links for the day
Why We Are Suing Matthew J. Garrett for Harassment and Why It's Important to Everybody in the Community
There's a limit to how much abuse to me and to my family I can tolerate for the act of merely reporting on corporate corruption
 
No, Mastodon is Not Growing, Social Control Media is Generally Waning
Our sister site pulled the plug on the whole thing over a year ago, seeing it was mostly a source of online abuse
A Loss for Fake Security, a Win for Net Autonomy
Crucifixion of domains has been ramping up this past week; it's a cautionary signal
Links 07/09/2024: UK Police Raid Journalist's Home, Epoch Times Setbacks, and Karma
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Friday, September 06, 2024
IRC logs for Friday, September 06, 2024
linuxsecurity.com is Still Spamming the Web
This is not harmless to Linux and it definitely merits a shun
Gemini Links 07/09/2024: Freedom in Bareness, Reactions in Addictive Social Control Media
Links for the day
[Meme] Confused Michael
Teaser...
Links 06/09/2024: Censorship of Sites by US, Hype Around LLMs Noted
Links for the day
[Meme] Hijacking the Brands
"Linux? Ah, you mean Microsoft!"
Google: We Help Combat What We Are Guilty of
The search itself is a conflict of interest
Linux Foundation Technical Advisory Board Has Election, But Google is Already Guaranteed Over 33.3% of the Seats ('Reserved' for It)
It has too much power/influence and it looks like a stacked panel
[Video] Theodore Ts'o Says How He Brought Linux to the United States (MIT) and What Makes Linux Leadership Effective
Microsofters keep attacking him
Layoffs Are Healthy and Not Happening
Good news for a change?
[Meme] Trickle-Down Ponzi Scheme
Where does money actually come from?
Considering Microsoft's Totally Fake Finances It Too is at Risk of Being Delisted From the Dow Jones Industrial Average and Other Indexes (NASDAQ, S and P) in the Near Future
Microsoft and Apple both had many layoffs this year
Asking Ourselves What Topics to Strategically Focus on
A lot of the tech media - if not "mainstream" media too - is already covering the growth of GNU/Linux
Media Needs to Stop Asking If "AI" is Just Hype (It Is, It's Not a Question)
The media should stop asking if the "AI" thing is bubble about to pop
Lots of GNU/Linux Detected in Palau and Windows Falls to New All-Time Low (14%)
Windows is falling further
Gemini Links 06/09/2024: Degoogling, LLMs, and ROOPHLOCH
Links for the day
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Thursday, September 05, 2024
IRC logs for Thursday, September 05, 2024
Links 05/09/2024: Starlink to Block Twitter (X) in Brazil, Ukraine Government Shake-Up
Links for the day
Gemini Links 05/09/2024: Going Vegan and Internet Office Hours
Links for the day
GNU/Linux and ChromeOS Still Moving Up in Africa
Chromebooks (with ChromeOS) aren't big there, but "proper" GNU/Linux is a fast-growing force
Links 05/09/2024: Apple Misleads UK Regulators, Microsoft Tries to Ignore Backlash Against Windows Ingrained CCTV
Links for the day
ChromeOS+GNU+Linux in Sweden Now Hovering Around 20%
It seems like Chromebooks are doing well enough in Sweden to bring up GNU/Linux usage to about 20%
Gemini Links 05/09/2024: ROOPHLOC, Source-of-Truth Problem, and Arrival of Autumn
Links for the day
Terms of Service (TOS) Under Scrutiny - Part XIII - RealVNC and What It Does in Practice
Some of these companies have financial objectives and they view users' behaviour/data as an "asset" they can sell for profit; do you wish to becoming their "client"?
Over at Tux Machines...
GNU/Linux news for the past day
IRC Proceedings: Wednesday, September 04, 2024
IRC logs for Wednesday, September 04, 2024