Posts

Showing posts from December, 2012

UK InfoSec Review for November 2012

Vital  Microsoft (4 critical)  and  Adobe (7 critical flash)  Security patches released this month. Adobe have joined Microsoft in with releasing patches on Microsoft’s Patch Tuesdays, such is the regularity of new vulnerabilities that are found in their applications. Fraudulent Westminster Council parking charge emails sent At least 800 fraudulent emails have been sent telling people they owe Westminster Council money for parking. Westminster's contractor, PayByPhone, said it had been the victim of a phishing scam.  The council said it had received complaints from 800 people saying they had received fraudulent emails. However, it could not provide an estimate for the number of emails that had been sent out.  Spam Emails are becoming more sophisticated and believable to end consumers, with attacks become more targeted against organisations, and personalised using stolen information. It is worth noting consumers and media can place blame a...

UK Data Protection Review for November 2012

ICO serves Prudential with a £50,000 fine after a mix-up over the administration of two customers’ accounts led to tens of thousands of pounds, meant for an individual’s retirement fund, ending up in the wrong account.   This is the first monetary penalty served by the ICO that doesn’t relate to a significant data loss, but is against not ensuring the customer information held was accurate and kept up-to-date  The original error was caused when the records of both customers, who share the same first name, surname and date of birth, were mistakenly merged in March 2007. The accounts remained confused for more than three years, and the problem was only resolved in September 2010. This was despite the company being alerted to the mistake on several occasions, including a letter from one of the customers in late April 2010 which clearly indicated his address had not changed for over 15 years. The company failed t...