Home page logo

dataloss logo Data Loss mailing list archives

Hackers have got into the identity register
From: Erica Absetz <erica () riskbasedsecurity com>
Date: Thu, 6 Jun 2013 15:30:14 -0500


The police driving licence register, including the personal identity
(CPR) number register were hacked in the summer of 2012 and may have
been changed, with hackers also having retrieved information about CPR
numbers and people posted as wanted in the Schengen area, according to
the Danish national police.

The police say that data hackers may also have had access to registers
from the Tax Authority and the Modernisation Agency, in a previously
undiscovered attack that seems to have gone on from April to August

The Security and Intelligence Agency and specialists from the Defence
Intelligence Cyber Security Unit are currently investigating the
break-in. A Swedish national currently in prison in Sweden is
suspected of being involved, with Denmark applying for his
extradition. A Danish man is also believed to have been involved in
the attack.

“This has been a serious breach of the IT security that there must be
in connection with police registers,” says National Police
Commissioner Jens Henrik Højberg in a news release.

The Security and Intelligence Agency has been tasked with making sure
that the necessary security procedures are in place in order to make
sure that similar attacks cannot take place in the future.

The break-in is said to have taken place in central computers at the
CSC company.

Justice Minister Morten Bødskov says all available resources are being
used to investigate the hacker attack.

“I can fully understand people who are worried about a security
failure involving police registers, and I can fully understand those
who want an answer as to whether the failure has any influence on
their affairs,” Bødskov says.
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list


Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.

  By Date           By Thread  

Current thread:
  • Hackers have got into the identity register Erica Absetz (Jun 06)
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]