Johnboy1951 wrote: » How and when are eir customers to be notified of the effects of the Data Breach on them individually, which happened 10 days ago. Is it not rather weird that there is a faulty security update and the day after that a laptop containing customer data was 'stolen'? Do customers now have to change all their passwords for the various eir services? Some information would be appreciated ........ even if it is 10 days late!
MoyVilla9 wrote: » Are they seriously telling me that customer information was stored on non encrypted laptop? Absolutely ridiculous.
eir: Tracey wrote: » Hi all, We have an announcement on our website in relation to this. It advises you on all details, you can view this here Thanks Tracey
McGaggs wrote: » eir: Tracey wrote: » Hi all, We have an announcement on our website in relation to this. It advises you on all details, you can view this here Thanks Tracey Hi Tracey, Can you let us know the lawful purpose for this information being stored on a laptop in a public place? Thanks
eir: Sarah wrote: » McGaggs wrote: » eir: Tracey wrote: » Hi all, We have an announcement on our website in relation to this. It advises you on all details, you can view this here Thanks Tracey Hi Tracey, Can you let us know the lawful purpose for this information being stored on a laptop in a public place? Thanks Hi McGaggs, All the information we currently have has been posted to our website linked above. We will update you if further information becomes available to us. Thanks, Sarah
The laptop was password protected but not encrypted.
In this case the laptop had been decrypted by a faulty security update the previous working day.
troyzer wrote: » They'll be getting a heavy slap under GDPR for this.
Johnboy1951 wrote: » eir: Sarah wrote: » McGaggs wrote: » eir: Tracey wrote: » Hi all, We have an announcement on our website in relation to this. It advises you on all details, you can view this here Thanks Tracey Hi Tracey, Can you let us know the lawful purpose for this information being stored on a laptop in a public place? Thanks Hi McGaggs, All the information we currently have has been posted to our website linked above. We will update you if further information becomes available to us. Thanks, Sarah So it is a heck of a lot worse than I thought! The laptop was password protected but not encrypted. In this case the laptop had been decrypted by a faulty security update the previous working day. How is this possible? ......... what operating system and what encryption scheme could allow this to happen?
Seth Brundle wrote: » When was the laptop stolen? When was the ODPC notified? What was the software update that unencrypted the laptop? What form of encryption was on the laptop? For what reason was the personal data for 37000 customers on a laptop? Is it commonplace for staff to require such large volumes of customer data on a portable device? Your explanation page states: "Our data protection rules are very rigorous" - how can for believe this to be the case given what happened?
SEPT 23 1989 wrote: » I am one of the 37k Received an e mail today
ArrBee wrote: » Ahhh, It's fairly easy to imagine customer data being on a laptop. The only bit that I'd call out is the excuse given for the lack of encryption. It's clearly made up to excuse the breaking of internal policy (FAQ says it's policy for password+encryption).
Pelvis wrote: » Jesus, rough crowd!! Eir have millions of customers and people are questioning WHY 37k customer's data was on a laptop, and in a public place? Of all the stupid ****in' questions... As the previous poster said, the main issue here is the laptop wasn't encrypted, that's just ridiculous.
CeilingFly wrote: » Funny, most people throw bills into their bin without a thought , but get all worked up over fairly basic information is in a data breach. Its relatively minor compared to the major data breaches from places like tk maxx, clarks shoes and others where credit card numbers and full customer details taken - yet the whiners weren't on boards about that???
horgan_p wrote: » SImple. Its because GDPR. The public, the media (and some would say the commissioner) have all been waiting to make an example of someone. And along came Eir.......
Johnboy1951 wrote: » CeilingFly wrote: » Funny, most people throw bills into their bin without a thought , but get all worked up over fairly basic information is in a data breach. Its relatively minor compared to the major data breaches from places like tk maxx, clarks shoes and others where credit card numbers and full customer details taken - yet the whiners weren't on boards about that??? Jeeze! What a stupid post!