by Mike Masnick
Mon, Jul 9th 2012 3:11pm
Slashdot points us to a bit of irony, in which it appears the Australian government ended up exposing the personal info of a bunch of citizens who had signed up for "stay smart online" alerts. Apparently, one way to stay smart online is to not sign up for "stay smart online" alerts from the Australian government. The issue was that a contractor who was running the program, AusCERT, had put all of the info -- including "usernames, email addresses, memorable phrases (used as password reminders) and cryptographically hashed passwords" -- onto a DVD and mailed it to another contractor who was taking over the program. And... it got lost in the mail. At least the passwords were hashed. But, you'd expect to be a bit safer than that when giving your information to the government for a "stay smart online" program...
If you liked this post, you may also be interested in...
- Despite Lack Of Evidence It Will Help, Australia Still Planning To Bring In Data Retention, Still Not Clear If It Could Be Used Against Copyright Infringement
- NSA Director: If I Say 'Legal Framework' Enough, Will It Convince You Security People To Shut Up About Our Plan To Backdoor Encryption?
- Lenovo CTO Claims Concerns Over Superfish Are Simply 'Theoretical'
- Lenovo Quietly Deletes That Bit About 'No Security Concerns' To Superfish... While Superfish Says 'No Consumers Vulnerable'
- Lenovo In Denial: Insists There's No Security Problem With Superfish -- Which Is Very, Very Wrong.