MP's details exposed after data breach

Personal details of MPs were exposed following a breach at the Independent Parliamentary Standards Authority.

Data security

A data breach at the Independent Parliamentary Standards Authority (IPSA) led to MP's information being placed at risk, including banking details and home telephone numbers.

The breach occurred on 13 July following IT maintenance on an MP expenses database, allowing people with an expenses account and their clerks to access the information.

The security loophole was left open for 21 hours and the Information Commissioner's Office (ICO) has ordered the IPSA to take steps to ensure such a breach does not occur again.

"This case highlights how any work carried out on a database must be subject to rigorous security testing before being re-launched," said Mick Gorrill, head of enforcement at the ICO.

Advertisement
Advertisement - Article continues below

"MPs carry out a high profile role and the information their expenses claims include could put them at risk of fraud and endanger their security."

The IPSA, which said it reported the breach to the ICO as soon as it happened, has now signed an undertaking, which includes a requirement to ensure system administrator accounts are reviewed regularly.

The news came less than a week after an MP, Robert Halfon, had criticised the ICO for not doing enough in the investigation into the Google Street View scandal.

In particular, Halfon took umbrage with a decision to send "non-technical" people to Google headquarters during the initial investigation in July.

The ICO is yet to levy a company with a fine, but has said it will do so this month.

Advertisement
Related Resources

Application security fallacies and realities

Web application attacks are the most common vulnerability, so what is the truth about application security?

Download now

Your first step researching Managed File Transfer

Advice and expertise on researching the right MFT solution for your business

Download now

The KPIs you should be measuring

How MSPs can measure performance and evaluate their relationships with clients

Download now

Life in the digital workspace

A guide to technology and the changing concept of workspace

Download now

Recommended

Visit/security/354156/google-confirms-android-cameras-can-be-hijacked-to-spy-on-you
Security

Google confirms Android cameras can be hijacked to spy on you

20 Nov 2019
Visit/information-commissioner/31751/what-is-the-information-commissioner-s-office-ico
Information Commissioner

What is the Information Commissioner’s Office (ICO)?

5 Sep 2019
Visit/data-protection/33450/bounty-fined-by-ico-for-unlawfully-sharing-member-data
data protection

Bounty fined by ICO for unlawfully sharing member data

15 Apr 2019

Most Popular

Visit/operating-systems/25802/17-windows-10-problems-and-how-to-fix-them
operating systems

17 Windows 10 problems - and how to fix them

4 Nov 2019
Visit/strategy/28115/the-pros-and-cons-of-net-neutrality
Business strategy

The pros and cons of net neutrality

4 Nov 2019
Visit/domain-name-system-dns/34842/microsoft-embraces-dns-over-https-to-secure-the-web
Domain Name System (DNS)

Microsoft embraces DNS over HTTPS to secure the web

19 Nov 2019
Visit/social-media/34844/can-wikipedia-founders-social-network-really-challenge-facebook
social media

Can Wikipedia founder's social network really challenge Facebook?

19 Nov 2019