The Government Digital Service's One Login digital identity system has been criticized for serious data protection failings and security shortcomings, risking data breaches and identity theft. An internal investigation confirmed these issues, yet GDS failed to disclose the warnings in a response to an MP's inquiry. A whistleblower reported unresolved security problems and was threatened with disciplinary action for their disclosures. The situation is exacerbated by offshoring development work to Romania without proper oversight, highlighting inadequate cybersecurity management within the GDS.
The Government Digital Service's One Login system has been flagged for serious data protection concerns, increasing risks of breaches and identity theft.
Warnings about One Login's security failings went unaddressed for 18 months, with significant concerns remaining despite an internal investigation confirming these issues.
Collection
[
|
...
]