Sean 🕯🎀 of the Antebellum (au)Aug 9, 2023
Paul

The more I think about this Electoral Commission data leak, the angrier I am. They didn’t need a centralised database to run elections. They compiled it for “research purposes”. If you can’t protect data, don’t collect it. It’s not enough to call it a “very sophisticated” attack: if you’re some kind of bumpkin organisation that can’t fend off a clever attacker, you shouldn’t be running a database of everyone’s details.

https://po-ru.com/2023/08/08/caught-with-their-data-breeches-down

Caught with their data breeches down

All our data has been exfiltrated by hackers, every one of the the forty-odd million adults registered to vote in the UK – which, may I remind you, we have to do by law – and the Electoral Commission’s response is not good enough.

po-ru.com
Aug 8, 2023 at 10:55pmWeb
Show threadSam J SharpeAug 8, 2023
@threedaymonk I am angry about the minimisation. The announcement implies it is the Full Register that was available, but it's not a problem because this is all public info. That's weasel words, because the Full Register is not freely available, the Open Register is and anyone who opted out of the Open Register (i.e. me) now faces the prospect of their home address being more widely known. Bastards.
Show threadKevin Karhan Aug 9, 2023
@threedaymonk eeyupp!
Show threadBen GriffithsAug 9, 2023
@threedaymonk data breeches are like peloton trousers. Sign up before they're cool! *Registers pantsopticon.com*
Show threadBen GriffithsAug 9, 2023
@threedaymonk in my experience, sophisticated attack means something like figuring out the default password for new joiners is 'p4ssword'.
Show threadIndy Richard 🏴󠁧󠁢󠁳󠁣󠁴󠁿Aug 9, 2023
@threedaymonk I would love to know if somewhere when we register to vote there is small print which allows Electoral Commission to do whatever they like with our data?