RSS Alerts

Share

More services

Related Links

  • Parcelforce
  • Elsevier Ltd is not responsible for the content of external websites.

Related Stories

  • Heartland takes US$12.6m hit for breach
    Heartland Payment Systems has revealed that it lost US$12.6m as a result of its 2008 data breach, in the same week that it finally regained official Payment Card Industry Data Security standard (PCI DSS) compliance.
  • Someone’s got to pay
    Consumers are increasingly trading the high street for the home computer, and in both cases getting more than they bargained for. Rob Stringer investigates the fraud and fuzzy legislation of retail security
  • Hampshire school data breach highlights need for multiple passwords
    A data breach at Bay House School in Hampshire has highlighted the importance of not using the same password for different websites and applications, say experts.
  • Data Breach Spring
    Infosecurity’s Drew Amorosi examines three data breach incidents from the past few months that, by their nature, keep security vendors in business, regulators busy, and CISOs up at night. Find out why industry observers think this rash of massive breaches could lead to a ‘PCI for consumer privacy’
  • Third-party vendor involved in customer data breach, Co-operative Group admits
    UK-based Co-operative Group has admitted that a third-party vendor posted information online about 83,000 customers of its funeral planning unit.

Top 5 Stories

News

Parcelforce customer data revealed

22 June 2009

Parcelforce customers' names addresses and postcodes were available online after a system related to the company's mail tracker service failed.

Parcelforcehas now rectified the problem and apologised to customers.

A BBC investigation revealed that when some customers entered their unique reference number for tracking a delivery, they gained access to other people's delivery details.

The BBC reported that in a period of 30 minutes,the system revealed details of parcels destined fora wide range of locations, including Cleveland, Swansea and Shanghai.

Name, postcode and signature details would allow fraudsters to steal someone's identity. The data breach breaks rules set by the Information Commissioner's Office (ICO).

A spokesperson for the ICO said,"Any organisation which processes personal information must ensure that adequate safeguards are in place to keep that information secure. This is an important principle of the Data Protection Act. Failure to protect personal details such as names, addresses and signatures could lead to information falling into the wrong hands and ultimately the loss of customers' trust and confidence."

The ICO said it will contactParcelforce"to establish how this security breach occurred and to find out what steps it will be taking to ensure that such a breach cannot happen again."

Parcelforce said the problem hadbeen rectified and the service was back to normal last night. It also apologised.

This news item first appeared on Computer Weekly's website: http://www.computerweekly.com/Articles/2009/06/19/236513/parcelforce-customer-data-revealed.htm

This article is featured in:
Data Loss  • Public Sector

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012