Archive — Information security

When you browse Instagram and find former Australian prime minister Tony Abbott’s passport numberAlex HopeThe Mango Zone

Montage including redacted screenshot of Tony Abbott's Instagram post

A highly entertaining read about how someone used a photo of a boarding pass posted by Tony Abbott on his own Instagram account to find out the former Australian prime minister’s personal details including his passport and phone number. Alex Hope embarks on an adventure to find out whether he broke the law, figure out how he can inform Tony Abbott that he knows his passport number, and let the airline know about their hair-raisingly bad information security.

Comment

UK infosec experts flag concern over NHSX contact tracing appLaurie ClarkeNS Tech

Mobile app displaying a text message from the government

This is the sort of reason why I don’t trust the state with my data as much as I trust many private companies. Apple and Google have worked together (itself a minor miracle) to develop a method of contact tracing that does not collect personal data and does not invade people’s privacy.

NHSX has rejected that model in favour of one that will enable them to deanonymise people, and store that information in a centralised database. This is the surveillance state. It risks reducing goodwill towards the NHS and other public institutions.

A statement for medical privacy campaign group Medconfidential reads: “Given NHSX has chosen to build an unnecessary massive pool of sensitive data, it must ensure that the data is well protected. With combined effort, GCHQ and NHS Digital will likely be good at defending the big pool of sensitive data. But there is no need to have that data. The best way to make sure data doesn’t leak, is to have chosen the method that never collected it.”

1 comment