funsec mailing list archives

Previous By Date Next
Previous By Thread Next

Hacking into a server leaves so much to chance

From: "Don Blumenthal" <dmblumenthal () gmail com>
Date: Wed, 15 Aug 2007 11:49:27 -0400
So you might as well go for the whole thing.

http://www.kablenet.com/kd.nsf/FrontpageRSS/AFE9551DA5803B978025733700322F57!OpenDocument
<<<

Forensic data stolen in server theft
14 August 2007

Thieves have stolen a computer server that contains files of forensic
evidence used by police in serious criminal investigations

FTS, a company that provides evidence on telephone use for police
forces in connection with their investigations, confirmed the theft
from its Kent premises in a statement on 12 August 2007.

The break-in took place at FTS' Sevenoaks office overnight on 6-7
August. The data contained on the server is believed to relate to
cases where the evidence has already been disclosed to defence
solicitors, as well as old cases where judgements have already been
passed.

FTS said: "In the unlikely event that the server was accessed, none of
the data stored on the server in any way compromises ongoing police
operations. All the data was restored within 24 hours due to FTS'
business continuity measures."

The serious nature of the work carried out by FTS, whose clients also
include the Crown Prosecution Service and HM Revenue & Customs, has
made the case a cause for concern in the criminal justice community.
The company does not even reveal the location of its offices for
security reasons.

[...]

Shadow home secretary David Davis described the theft as extremely
serious. "Terror investigations are extremely complex and depend on
vital intelligence and evidence based on phone records," he said.
"While we have to let the police get on with their investigation, it
is essential that the government takes every possible step to protect
this information and leave absolutely nothing to chance."

FTS said it is undertaking a full review of its security.

-- 
Don M. Blumenthal
Technology, Law, and Policy
dmblumenthal () gmail com
www.donblumenthal.com
734-997-0764        202-431-0874 (c)
_______________________________________________
Fun and Misc security discussion for OT posts.
https://linuxbox.org/cgi-bin/mailman/listinfo/funsec
Note: funsec is a public and open mailing list.
Previous By Date Next
Previous By Thread Next

Current thread: