Advertisement
Promo

Security threats Toolkit in association with http://ad.doubleclick.net/clk;214682528;14505427;f?http://uk.blackberry.com/ataglance/security/

Data Breaches

Home Office laptop and disc 'bought on eBay'

David Meyer ZDNet.co.uk

Published: 28 Feb 2008 12:57 GMT

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment

The Home Office is investigating the apparent sale of one of its laptops, along with an encrypted data disc, on eBay.

The laptop had been bought on the auction site then taken to an IT company near Manchester for repairs. The technicians at the repair centre, at Leapfrog Computers in Westhoughton, subsequently found an encrypted Home Office disc underneath the keyboard.

Leapfrog sales manager Jonathan Parry told ZDNet.co.uk on Thursday that the person who had bought the laptop had brought it into the shop on Monday because "it wasn't working properly".

"Underneath the keyboard in the laptop was a CD labelled 'Home Office: Private and Confidential'," Parry said. "We tested it and it was fully encrypted, and so was the laptop. We contacted [the police] and they seized the equipment."

Parry pointed out that, as optical disc drives are sealed units, "the only way that disc can get there is by taking the laptop keyboard off and putting the disc in there". He added that the presence of a CD underneath the keyboard was probably linked to the laptop not working.

Watch this

Schneier: Perceptions of security are flawed
Video Story Video Control Panel

"We understand that encrypted IT equipment has been handed to Greater Manchester Police," a Home Office spokesperson said on Thursday. "Both the laptop and the disc were encrypted, thus safeguarding any information that might be stored on them. Investigations are now underway. It would be inappropriate to comment further while they are ongoing."

Security companies were quick to issue statements on the discovery. "The good news with this latest data breach is that the data was encrypted," said Lumension Security vice president Alan Bentley on Thursday. "However, encryption alone is not infallible — computer hackers are determined individuals with the potential to crack one layer of security. We certainly shouldn't be relying on one line of protection when it comes to our national security."

"With the statistics showing that nearly 500 government devices have gone missing since 2001, it was only a matter of time before a confidential disc inadvertently ended up on eBay," said Brian Spector, the general manager for content protection at Workshare. "Luckily, the public sector finally seems to be learning from repeated mistakes, as the laptop and disc were encrypted. Unfortunately accidents like this are not going to stop happening so we can only hope that other government departments follow the Home Office's lead and adopt full disc encryption."

Governmental departments have suffered a spate of laptop thefts in recent years, recently leading to a Whitehall-wide ban on the the movement of unencrypted data.

  • Email
  • Trackback
  • Clip Link
  • Print friendly
  • Post Comment
Data Breaches

Did you find this article useful?
12 out of 16 people found this useful


Talkback

Post a comment


Full Talkback thread

1 comment

  1. Could have been worse. harpless

Related Links

More in this Special Report

The top five internal security threats

The top five internal security threats

It's widely known that internal staff are the biggest threat to IT security, but what specifically should an employer watch out for? more

Keeping mobile data from going walkabout

Keeping mobile data from going walkabout

Mobile email is no longer the preserve of upper management but providing access to company information on the go has its risks more

Lib Dems call for data guardians

Lib Dems call for data guardians

The Liberal Democrats are seeking the introduction of data guardians into the public and private sector, to protect citizens' information rights more

Worker suspended over loss of prisoner data

Worker suspended over loss of prisoner data

An employee at Home Office contractor PA Consulting has been suspended after the loss of a memory stick holding the unencrypted details of every prisoner in England and Wales more

Ministry of Justice reports nine data breaches

Ministry of Justice reports nine data breaches

The ministry reported the data breaches, affecting around 45,000 people, to the Information Commissioner's Office in the last financial year more

Foreign Office reports five data breaches since 2007

Foreign Office reports five data breaches since 2007

The data breaches at the Foreign and Commonwealth Office are thought to have affected less than 188 people in total more

ICO: Gov't ignoring data-sharing hazards

ICO: Gov't ignoring data-sharing hazards

The government is blindly pursuing data-sharing plans without heeding the potential pitfalls, information commissioner Richard Thomas has claimed more

Lords presses government for data-breach law

Lords presses government for data-breach law

The House of Lords has again urged the government to introduce a data-breach notification law, adding that banks should be liable for e-fraud losses more

Video: Get the most out of your data

Video: Get the most out of your data

How do companies deal with information management? Jonathan Steel, CEO of tech-research firm The Bathwick Group, gives insights based on a recent ZDNet.co.uk benchmark survey more

Justice minister urges overhaul of gov't data handling

Justice minister urges overhaul of gov't data handling

Michael Wills has called for the government to handle data transactions as carefully as financial transactions more

MoD announces data-protection action plan

MoD announces data-protection action plan

The ministry has published a plan of how it intends to meet 51 data-policy recommendations made as part of review into the loss of MoD laptops more

Systemic failure blamed for HMRC data loss

Systemic failure blamed for HMRC data loss

Two reports have found the loss by HMRC of 25 million child-benefit claimant details was 'entirely avoidable' more

Featured Oracle Resources

Human Resources Management eBook

Supply Chain Management eBook

Design and Innovation Report

Economist Intelligence Unit Report - Technology and growth at mid-sized companies

See All White Papers

More In Security threats


Company/Topic Alerts

Create a new alert from the list below:






Related Jobs

Applications Specialist - Trainer - Imaging Radiology

Medical Sales Representative

Maintenance Engineer, Multi-Skilled Maintenance Engineer, Electrical M

Related BlackBerry Resources

Human Resources Management eBook

Supply Chain Management eBook

Design and Innovation Report

Economist Intelligence Unit Report - Technology and growth at mid-sized companies

Protecting the BlackBerry Device Platform Against Malware

BlackBerry Devices with Bluetooth - Security Overview

BlackBerry Enterprise Server IT Policy

BlackBerry Enterprise Solution - Security Technical Overview

BlackBerry Enterprise Solution and RSA SecurID

CIO's Guide to Mobile Security

See All White Papers

Video icon

Video

Sentry Posts Blog

Nasa hacker petition presented to Numb...

Sting's wife Trudie Styler and Janis Sharp have presented a petition to Number 10 calling for Nasa hacker Gary McKinnon not to be extradited to the US. Styler, and Sharp, who is... More

Post a comment

UK to appoint cyber-sec tsar?

The UK is to appoint a cyber security tsar along the lines of the US, according to a story in the Telegraph this morning. The story is similar to one that appeared in the Guardian... More

Post a comment

Nokia Siemens denies Iran web snoop

Nokia Siemens has denied providing deep packet inspection capabilities to the Iranian authorities, following an article in the Wall Street Journal on Monday. The WSJ published the... More

Post a comment


Skip Sub Navigation Links to CNET Brand Links

Help

Become part of the ZDNet community.

ALL TOOLKITS

Blogs

Newsletters