"The MoD was responsible for the accidental data breach, which took place in February 2022 and is likely to have cost more than £850 million. Evidence of the breach only came to light in July this year after a government superinjunction, imposed in August 2023, was lifted. According to a report [PDF] from the National Audit Office (NAO), the MoD first became aware of the data breach in August 2023 when personal details of ten individuals from the dataset were posted to Facebook."
"During those sessions - because of the classification - no notes could be taken, so when my colleague made the decision to take no further action, and he informed me of that, we didn't document it immediately. It was only after the superinjunction was lifted that we recorded a formal decision and put that into the system,"
An accidental Ministry of Defence data breach in February 2022 exposed thousands of Afghans connected to the British Armed Forces and is likely to have cost more than £850 million. Evidence emerged publicly only after a government superinjunction, imposed in August 2023, was lifted in July, and the MoD first became aware in August 2023 when details for ten individuals were posted to Facebook. The Information Commissioner's Office met with MoD officials and did not launch a formal investigation, citing classification and information-system constraints that complicated note-taking and handling of classified material. The leaked spreadsheet contained 33,345 lines including names and contact details of Afghan resettlement applicants.
Read at Theregister
Unable to calculate read time
Collection
[
|
...
]