Log in

Posts Tagged ‘Ireland’

Laptop Theft of Anglo Irish Bank’s CEO

February 12th, 2011

In an absolutely shocking incident, a LAPTOP which contained banking and personal information of the CEO of Anglo Irish Bank, Mike Aynsley has been stolen.

Who is Mike Aynsley and when did the incident happen?

As we mentioned above, Mike Aynsley is an Australian and he was appointed as the chief executive of the nationalised bank in August 2009. Mr Aynsley hails from the city of Sydney in Australia and prior to this he was associated with banking industry in the geographies of Australia and Asia. At the time of his appointment, Anglo had been without a chief executive for eight months following the resignation of David Drumm the previous December.

This was exactly eight months after chairman David Drumm fled on the discovery of concealment of loans of over €100m being to former chairman Sean FitzPatrick. So this means, Anglo Irish Bank was without a CEO for eight months.

Coming back to the incident, although it happened in November its revelation was made only a few months ago. There were three hooded males who were captured on a CCTV breaking into the south Dublin home of Mr Aynsley and stealing a laptop. Not only this, they also laid their hands on a 120 gig iPod and a digital camera which is believed to contain 32gb of SD card. This incident had happened in broad daylight in mid-November. Till today, detectives have not been able to figure out who the thieves are and where the laptop is?

To top it all, the laptop files were un-encrypted although there was a password protection in place.
Security at 52-year-old Mr Aynsley’s home was subsequently beefed up and other senior officials at Anglo have also been given personal security advice.

Was Mr. Aynsely’s Home Secure?

Actually, if you analyze Mr. Aynsely’s home, it is having state of art security systems. But the thieves were really intelligent and their acts demonstrate that they weren’t like any roadside burglars. First of all, they broke into the back door panel, they were also able to evade the state-of-the-art infra-red wireless alarm beams and even the closed circuit TV (which had secret pin-hole cameras, as well as obvious wall-mounted CCTV cameras inside and out). The only thing that was left as an evidence, was the cctv footage which shows the three masked man entering inside.

As per a statement: “A senior executive’s home was burgled last November when a small number of personal items were taken including a laptop. The gardai were immediately alerted and are continuing to investigate.”

In a couple of other news incidents, the CFO of Anglo Irish Bank, Mr Van Eden has resigned. Also the Anglo Irish bank is expected to post a loss of €17.6 billion for 2010, which is the the largest in Irish corporate history, beating their own previous record. At the time of this post, there’s no direct correlation observed to have been found out b/w the laptop theft incident and these two news stories.

Laptop Theft and Alertsec

This news exemplifies the need for data protection applications like Data encryption software and Laptop encryption. In an incident which highlights the need of a data security and recovery software, the threat could have simply been reduced to an insurance matter by a mere investment of $13/month. The information would have been secure with no loss what so ever. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Winding Down Anglo Irish, Irish Nationwide (online.wsj.com)
Former Anglo-Irish Bank CEO Drumm will testify (reuters.com)

3 comments »

Posted in Uncategorized

Tags: Anglo Irish Bank Anglo Irish Bank hidden loans controversy Bank David Drumm iPod Ireland Mike Aynsley Seán FitzPatrick

Fine Gael website has been Hacked and Personal Data of 2,000 Supporters were Breached

January 18th, 2011

When you are talking about data in IT organizations hacking attacks will continue to thrive. Again in any professional organization, the tendency of such kinds of attacks happening in real-time is very common. Through the medium of this blog, we’ve been highlighting several breach incidents which present strong warnings for organizations to enhance their mechanisms for the protection against data loss incidents. One such way of ensuring the data security is through the use of data encryption software.

Today we are going to talk about Fine Gael, a political party portal and how it became the latest victim of data breach incident.

Fine Gael website Hacked by an “Anonymous” Group

Fine Gael party leader Enda Kenny

As we mentioned above, Fine Gael is the new website of an Irish political party. It has been hacked by “Anonymous”, an online hacking group. The website was launched last week and the reason of launching was to invite members of the public to share their views on policy and the future of Ireland.

Fine Gael has been formed in 1933 and considered as the moderate political party. On Tuesday Party replaced its old website finegael.ie with the new website finegael2011.com. This site has been hosted by the American internet firm ElectionMall Technologies which is a US firm.

Personal Data of Around 2000 Supporters were Revealed

So how does it feel to be among those whose data is revealed? Exactly this is what happened to the supporters of Fine Gael. The hacking incident had an impact on the personal data of around 2000 supporters. Irish Central reported that the number of affected is believed to increase to 4,000. This attack took place on Sunday and immediately after the attack website was forced offline. The hacker was forwarded the personal details file to media organizations. This file was containing the IP addresses, phone numbers and e-mail addresses of approximate 2000 people.

Why the New Hosted Website was Hacked

According to the attackers, the site was hacked because comments submitted to the site by users were being censored and forwarded around 2,000 members’ details with the claim that the party was censoring comments from the public. Hackers posted a message on the Fine Gael website after removing the message posted by them. The posted message was “Nothing is safe, you put your faith in this political party and they take no measures to protect you. They offer you free speech yet they censor your voice. Wake up!”

A spokesperson for Fine Gael said the attack was “assumed to be by Anonymous”, but “the link is yet to be proven”.

This online “Anonymous” Group is best known for its attack on websites and has been also tried to bring down several payment sites including Mastercard.com and Visa recently to block the payments to Wikileaks.

Action Taken By the Party

As a follow-up activity, party has informed the people, whose data has been compromised by an email about the breach. Also warned them that the hacked data was included their personal details like names, email addresses, constituency details and phone numbers. Fine Gael contacted to the data protection commissioner “Billy Hawkes” who is investigating this case and also contacted the Garda Computer Crime Unit in relation to the attack. The FBI has also involved in this case after ElectionMall contacted the US police.

According to Hawkes, party suspects that the personal data of those who posted comments or registered their details has been compromised. In a statement party said the website will be offline “while we follow-up with the appropriate authorities to resolve the matter.”

How Alertsec Xpress Would Have Helped

In an incident which highlights the need of a data security and recovery software, the threat could have simply been reduced to an insurance matter by a mere investment of $13/month. The information would have been secure with no loss what so ever. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Fine Gael website targeted by Anonymous hackers (guardian.co.uk)
Irish site ‘hacked by activists’ (bbc.co.uk)
FG site hacked in seconds – default passwords unchanged. Hacked for not buying Irish. (politics.ie)
Fine Gael’s new website appears to have been hacked (politics.ie)
Fine Gael’s website hacked (sociable.co)

1 comment »

Posted in Hackers, Uncategorized, data breach

Tags: alertsec AlertSec Xpress data data breach Data Breaches data security finegael Information Loss Ireland Political party security security breach United States Wikileaks

Ireland Considering New Data Breach Notification Rules

June 11th, 2010

: Data Security Concerns in Ireland

Close on the footsteps of its neighbouring countries, Ireland is also looking at the data protection rules with more details. According to these rules an organization should report a data breach incident to the authorities incase of any incidents involving loss of personal data of more than 100 people.

According to William Malcolm, a privacy lawyer with the law firm Pinsent Masons Ireland has had its share of high-profile data breaches which has spurred the creation of the code of practice.

As per the proposal by Ireland’s privacy regulator data losses will now be declared to Ireland’s Data Protection Commissioner in line the draft code of practice published by the Commissioner.

Can the organizations avoid reporting?

Yes, they can certainly avoid the report of data breach if their data is encrypted and protected by a strong password. In addition, they can also escape reporting if their devices are using a remote memory-wipe feature which is activated on the lost device.

Some experts foresee the masking of critical incidents as the problem with data breach notification guidelines. They believe that due to these rules there is a possibility that major incidents could get hidden and lesser known events exposed.

A couple of years ago, the government of Ireland had recommended the creation of an official guidance which would highlight the the time to report the incidents. The office of the data protection commissioner has published the proposed draftcode of practice on its Web site and starting June 18 it would be available for public comment.

According to Irish Data Protection Commissioner Billy Hawkes, “I have sought to bring forward a draft Code as quickly as possible after the Review Group report to respond to public concern in relation to organisations losing personal data under their control while at the same time not imposing an undue burden on those organisations”.

What if data loss involves less than 100 people?

If the loss incident involving less than 100 people includes sensitive personal data or financial information then that must be reported as well.

What would the report constitute?

The report would include the following:

Type of the data compromised
What action has been taken
How people have been informed or the reason for not informing people
What kind of actions have been taken to limit the problems for affected people.

Data Security with Alertsec Xpress

Why do data breach incidents happen in the first place? Perhaps your organization didn’t take the requisite steps or there was some level of negligence with the handling of data.

If you use a data security software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or senstive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Related articles by Zemanta