Tuesday, 18 November 2014

Irish language website exposes users’ data

In February, Northern Ireland launched a site to encourage people to learn Irish, which seems like a good goal.  Unfortunately, registered users’ name, address, email address and other personal information (I don’t know what yet) was available via the site’s search function.

The government has apologised and shut down the site while it gets fixed. I expect it’s the usual story: when the idea first came about, it didn’t sound like there ought to be any privacy threats so nobody was hired to think about privacy. But sites are not ideas.  Still, you’d think someone would notice.at some point during development. Who on Earth did they hire to build this thing?

No comments:

Post a Comment