[Dataloss] Thousands of doctors' details put on web
security curmudgeon
jericho at attrition.org
Fri Dec 21 08:45:56 UTC 2007
---------- Forwarded message ----------
From: InfoSec News <alerts at infosecnews.org>
http://www.telegraph.co.uk/news/main.jhtml?xml=/news/2007/12/20/ndocs120.xml
By Rebecca Smith
Medical Editor
20/12/2007
Computer security failures that allowed sensitive personal details of
junior doctors applying for training posts to be viewed by others were an
"unacceptable breach of security" by the Department of Health, the
Information Commissioner has found.
The sensitive details of thousands of doctors, including religious beliefs
and sexual orientation, could be seen by anyone logging on to the Medical
Training Application Service site.
The commissioner said the Department of Health had breached the Data
Protection Act and warned that if it happened again the department would
be prosecuted.
The findings increase pressure on ministers over the handling of sensitive
personal data and follows a series of security blunders.
[..]
More information about the Dataloss
mailing list