If you have a new account but are having problems posting or verifying your account, please email us on hello@boards.ie for help. Thanks :)

Hello all! Please ensure that you are posting a new thread or question in the appropriate forum. The Feedback forum is overwhelmed with questions that are having to be moved elsewhere. If you need help to verify your account contact hello@boards.ie

Airtricity Data Breach

goose06 · 2013-06-26 10:47:13

Just saw this and haven't seen any threads on it so just to let you know. http://www.airtricity.com/press-releases/customer-data-protection-notice/?section=ROIDOM Just shows how insecure your personal data can be. Not the first time either http://www.boards.ie/vbulletin/showthread.php?p=80538481

Options

26-06-2013 11:47am

#1

goose06

Registered Users Posts: 742 ✭✭✭

Join Date: January 2006

Posts: 629

Just saw this and haven't seen any threads on it so just to let you know.

http://www.airtricity.com/press-releases/customer-data-protection-notice/?section=ROIDOM

Just shows how insecure your personal data can be.

Not the first time either

http://www.boards.ie/vbulletin/showthread.php?p=80538481

0

Comments

Options
#2 26-06-2013 12:19pm
[Deleted User]
Posts: 0 ✭

Join Date: -

Posts: 0

It's terrifying when you realize just how vulnerable everything is online! Remember when the boards.ie database got hacked? That caused havok! Thankfully they probably wouldn't have stolen things like financial records, but it still is eye-opening!

0
Options
#3 26-06-2013 12:56pm
RangeR

Registered Users Posts: 7,265 ✭✭✭

Join Date: November 2004

Posts: 6862

Airtricity takes the security of customer information and our obligations to protect it very seriously

I laugh at companies who say this AND put live customer database on the internet.

And no, it's not the first time. It's also not the second time, either. Airtricity seem to have a data breach every year or two. I left them soon after the first [that I'm aware of] breach. They couldn't answer my questions as to why un-encrypted text file containing customer details were sitting on their webserver.

Once is an an accident. Twice is an oopsie daisy. THREE times is gross negligence and DPC should come down VERY hard.

0
Options
#4 26-06-2013 6:46pm
Galia

Closed Accounts Posts: 129 ✭✭

Join Date: March 2011

Posts: 117

or they should use someone other than http://www.oracle.com/ie/index.html

0
Options
#5 26-06-2013 7:59pm
RangeR

Registered Users Posts: 7,265 ✭✭✭

Join Date: November 2004

Posts: 6862

I don't blame Oracle. Oracle didn't put a production database on a webserver. Databases should NEVER be put on a webserver. That was a bad [negligent?] design choice on Airtricity's part. DB should ALWAYS be on the LAN with something like sanatised web services as the middle man between data and website.

The first one was pure incompetence. Placing a non encrypted text file with customer data [this was during a sign up drive] on a public facing web server. Again, negligent. How many **** ups must a company have before they even get a slap on the wrist?

0
Options
#6 27-06-2013 8:56am
goose06

Registered Users Posts: 742 ✭✭✭

Join Date: January 2006

Posts: 629

RangeR wrote: »

The first one was pure incompetence. Placing a non encrypted text file with customer data [this was during a sign up drive] on a public facing web server. Again, negligent. How many **** ups must a company have before they even get a slap on the wrist?

Judging by the lack of media coverage I'd be surprised if anything is done about it all.

0
Advertisement