cybersecurity

4677 readers

164 users here now

An umbrella community for all things cybersecurity / infosec. News, research, questions, are all welcome!

Community Rules

Be kind
Limit promotional activities
Non-cybersecurity posts should be redirected to other communities within infosec.pub.

Enjoy!

founded 2 years ago

MODERATORS

shellsharks@infosec.pub

tweedge@infosec.pub

Afghans burnt by UK data leak because someone used email to send a large sensitive dataset -- which email service, anyone know? (www.theguardian.com)

submitted 1 week ago by evenwicht@lemmy.sdf.org to c/cybersecurity@infosec.pub

3 comments fedilink hide all child comments

cross-posted from: https://lemmy.sdf.org/post/38677119

Indeed it was stupid for someone to send a large sensitive dataset over email. But what I find annoying is the lack of chatter about which email servers were compromised.

Was it Microsoft, considering probably 90+% of all gov agencies use it?

top 3 comments

sorted by: hot top controversial new old

[–] Jerry@feddit.online 5 points 1 week ago (1 children)

The article referenced by the article just mentions it was sent to the wrong people. I don't know how this puts blame on any particular email provider.

[–] evenwicht@lemmy.sdf.org 1 points 1 week ago* (last edited 1 week ago) (1 children)

There are different narratives. What I believe I heard on BBC radio was that the sender intended to just send a few records to the recipient but accidentally sent the full dataset of 18,000 (or 19,000) records.

Other sources, like the one I linked, say the error was that the wrong recipient was emailed.

It’s surprising that as big as the story is, reporting of the tech details is lousy. A couple sources say the data was a spreadsheet, which seems to support what the Guardian says.

[–] Jerry@feddit.online 2 points 1 week ago

It's true. The media often doesn't care about the details, which are the most important bits.