withoutfire

Grand Central: Great trains, terrible terms
Feb 26, 2010
Recently I travelled to York on Grand Central Railway. I really like their train service because you pay the same fare whether you buy your ticket in advance, at the station, or on the train. ...
Filling cabinet breaches
Feb 1, 2010
I like to analyse the ICO's undertakings and enforcement notices to see whether there are lessons you can learn from other people's unfortunate mistakes. ...
Data Sharing and the Blue Badge Parking Scheme
Jan 13, 2010
Back in 2008 the government announced that they were going to reform some of the ways the disabled parking / blue-badge scheme worked to reduce the amount of fraudulent use. ...
The future of privacy talk at ORG
Dec 6, 2009
Bruce Schneier spoke on the subject of The Future of Privacy at the Open Rights Group on Friday. ...
Abuse of radio buttons and check boxes
Dec 5, 2009
I’m particularly sensitive to interface design and I saw a real horror this week. ...

Understanding the Verity Trustees breach

It feels like the ICO has a target of publicising one major breach a week. This week was the turn of Verity Trustees Limited, the trustee organisation behind The Pensions Trust. The Pensions Trust provides pensions for over 4,000 organisations and 130,000 people from the not-for-profit sector.
In this case the ICO press release (PDF) reported [...]

An analysis of the T-Mobile breach

There’s been a lot in the press for the past few days about the recent T-Mobile breach. Basically it appears that a number of staff at the mobile phone company have been selling customer data which included the customer’s name, their mobile number and when their contract expired. There hasn’t been a great deal of [...]

Six myths of risk assessment
David Lacey's IT Security Blog
I find it surprising that after more than 30 years of experimentation of risk assessment, many security practi...
Fashion crimes: trending-term exploitation on the web
Light Blue Touchpaper
News travels fast. Blogs and other websites pick up a news story only about 2.5 hours on average after it has...
Future solutions to safeguard information security
David Lacey's IT Security Blog
This is the third in a series of commentaries on what's wrong with information security and what needs to be c...
My Favorite Top 10 Best #Protolol Jokes
Security Generation
No idea where it came from, but today the techno-geek community of Twitter woke up and decided en-masse that i...
Lessons from the attack on Lockheed Martin
David Lacey's IT Security Blog
Regardless of who got access to what (if anything) in the recent reported cyber attack against Lockheed Martin...

Site guide

My blog updates

Understanding the Verity Trustees breach

An analysis of the T-Mobile breach

Interesting law and security updates from other blogs and sites