50,000 Staff Files stolen from Innsworth
Thread Starter
Join Date: May 2004
Location: Scotland
Posts: 62
Likes: 0
Received 0 Likes
on
0 Posts
50,000 Staff Files stolen from Innsworth
Sky News Ticker states "MoD confirms 50,000 Personal Files stolen from RAF Innsworth"
Anyone have any more details? RAf staff or tri service? As the RAF have now left Innsworth is this SPVA/EDS, or were the files lost in transit to Cranwell / High Wycombe?
Anyone have any more details? RAf staff or tri service? As the RAF have now left Innsworth is this SPVA/EDS, or were the files lost in transit to Cranwell / High Wycombe?
Thread Starter
Join Date: May 2004
Location: Scotland
Posts: 62
Likes: 0
Received 0 Likes
on
0 Posts
Innsworth Files
More details here
Safety fears for 50,000 RAF staff after personal files are stolen - mirror.co.uk
Looks like its a theft from the SPVA but RAF files lost.
Safety fears for 50,000 RAF staff after personal files are stolen - mirror.co.uk
Looks like its a theft from the SPVA but RAF files lost.
BBC sez serving and ex serving.
BBC NEWS | England | Gloucestershire | Personnel records stolen from MoD
Hope they don't find out I had my toe nail removed by the RAF when I was in !!
BBC NEWS | England | Gloucestershire | Personnel records stolen from MoD
Hope they don't find out I had my toe nail removed by the RAF when I was in !!
). PMA never managed to do it.
Join Date: Apr 2007
Location: United Kingdom
Posts: 27
Likes: 0
Received 0 Likes
on
0 Posts
Official Statement
The official statement is as follows:
The Ministry of Defence is investigating the apparent theft of three computer hard drives from a secure facility at Innsworth in Gloucestershire.
Two of the drives are believed to have contained potentially sensitive personal data relating to personnel who served in the Royal Air Force in recent years; the third hard drive did not contain any personal data.
An investigation is being conducted by the MOD Police, with the support of Gloucestershire Police, and it would be inappropriate to give further details of the circumstances of the incident at this stage.
The theft of these hard drives from a secure location, where they were subject to physical protection standards consistent with the Data Handling Review, is being treated with great seriousness.
An urgent assessment is underway into the detailed nature of the data that was on the drives. There is no indication that the theft was motivated by a desire to obtain the data, nor that the data has been exploited maliciously in any way; but personal information on anyone serving or who has served in recent years in the RAF, Regular or Reservist, may have been compromised. The classification of individual documents is not believed to have been higher than RESTRICTED.
As the detailed assessment work progresses, the MOD will immediately notify any individuals for whom particularly sensitive information, such as financial details, was held and who may have been affected. In the meantime, concerned serving and former RAF personnel can get in touch via email – [email protected] – or via a helpline (0800 085 3600). This will be available from 1000 to 1600 on both Saturday 27 and Sunday 28 September, and 0700 to1900hrs in the normal working week.
This was posted by the Ministry of Defence. You can find a copy at:
Ministry of Defence | Defence News | Defence Policy and Business | MOD investigating Innsworth hard drive theft
The Ministry of Defence is investigating the apparent theft of three computer hard drives from a secure facility at Innsworth in Gloucestershire.
Two of the drives are believed to have contained potentially sensitive personal data relating to personnel who served in the Royal Air Force in recent years; the third hard drive did not contain any personal data.
An investigation is being conducted by the MOD Police, with the support of Gloucestershire Police, and it would be inappropriate to give further details of the circumstances of the incident at this stage.
The theft of these hard drives from a secure location, where they were subject to physical protection standards consistent with the Data Handling Review, is being treated with great seriousness.
An urgent assessment is underway into the detailed nature of the data that was on the drives. There is no indication that the theft was motivated by a desire to obtain the data, nor that the data has been exploited maliciously in any way; but personal information on anyone serving or who has served in recent years in the RAF, Regular or Reservist, may have been compromised. The classification of individual documents is not believed to have been higher than RESTRICTED.
As the detailed assessment work progresses, the MOD will immediately notify any individuals for whom particularly sensitive information, such as financial details, was held and who may have been affected. In the meantime, concerned serving and former RAF personnel can get in touch via email – [email protected] – or via a helpline (0800 085 3600). This will be available from 1000 to 1600 on both Saturday 27 and Sunday 28 September, and 0700 to1900hrs in the normal working week.
This was posted by the Ministry of Defence. You can find a copy at:
Ministry of Defence | Defence News | Defence Policy and Business | MOD investigating Innsworth hard drive theft
Join Date: Jan 2002
Location: The front end and about 50ft up
Posts: 510
Likes: 0
Received 0 Likes
on
0 Posts
Goddammit. This will be the second time all my personal details (bank account, address, NoK, blood group, religion, dick size (large), etc) have been lost by the MoD within the last year, having previously featured in the Birmingham car boot laptop incident. Within a few months of that event I sufferred my first occurence of identity fraud. Coincidence? This is just not good enough and I'm thredders.
When prisoners' details were recently lost, Government departments were apparently clamouring to offer compensation. I wonder when we'll be compensated and our details securely protected - I won't hold my breath!
Prisoners
Previous MoD major sy f-up
When prisoners' details were recently lost, Government departments were apparently clamouring to offer compensation. I wonder when we'll be compensated and our details securely protected - I won't hold my breath!
Prisoners
Previous MoD major sy f-up
Guest
Posts: n/a
Stating the bl**ding obvious
I think this is unlikely to be malicious.
Every small item of electronic equipment, not bolted or welded to the desk has a value and can be used, sold, exchanged, or given away for credits.
Memory sticks, portable drives, calculators, mobile phones, I-phones and players, etc have a ready market irrespective of what they contain. Even encryption is of no consequence because it is usually not visible at the time of the theft.
Every nationality in the world including UK citizens are employed as cleaners, cooks and bottle washers throughout all corners of the civil service and military. The usual security and criminal record checks will not identify a small theft character trait.
If not dumped in the river as being too hot, they will probably turn up at a boot sale in Gloucester for £3:00 each.
Why, why, why do we allow portable anything and windows everything.
Imagegear
Every small item of electronic equipment, not bolted or welded to the desk has a value and can be used, sold, exchanged, or given away for credits.
Memory sticks, portable drives, calculators, mobile phones, I-phones and players, etc have a ready market irrespective of what they contain. Even encryption is of no consequence because it is usually not visible at the time of the theft.
Every nationality in the world including UK citizens are employed as cleaners, cooks and bottle washers throughout all corners of the civil service and military. The usual security and criminal record checks will not identify a small theft character trait.
If not dumped in the river as being too hot, they will probably turn up at a boot sale in Gloucester for £3:00 each.
Why, why, why do we allow portable anything and windows everything.
Imagegear
Join Date: Jan 2007
Location: Birmingham
Posts: 88
Likes: 0
Received 0 Likes
on
0 Posts
The classification of individual documents is not believed to have been higher than RESTRICTED.
Um, may I mention a fundamental security concept called 'aggregation'?
Yes, a single personnel record may only be RESTRICTED. (Actually, it would probably be RESTRICTED MANAGEMENT or whatever the appropriate protective marking is these days). But several thousand of them together should collectively be treated as a single package to be protected at a rather higher level. This falls naturally out of the definition of protective marking levels - what used to be called classifications - as being related to the risk posed by compromise of the material in question. The loss of ten thousand personnel files is by definition more serious than the loss of one, so a hard drive containing ten thousand personnel files should be protected at a higher level than any file on its own.
Um, may I mention a fundamental security concept called 'aggregation'?
Yes, a single personnel record may only be RESTRICTED. (Actually, it would probably be RESTRICTED MANAGEMENT or whatever the appropriate protective marking is these days). But several thousand of them together should collectively be treated as a single package to be protected at a rather higher level. This falls naturally out of the definition of protective marking levels - what used to be called classifications - as being related to the risk posed by compromise of the material in question. The loss of ten thousand personnel files is by definition more serious than the loss of one, so a hard drive containing ten thousand personnel files should be protected at a higher level than any file on its own.
Join Date: Sep 2007
Location: W Sussex
Posts: 115
Likes: 0
Received 0 Likes
on
0 Posts
Modernisation has a lot to answer for! For those of us old enough to remember mainframes, you couldn't stroll off with a couple of Winchester drives up your shirt! 
Still, it's worrying that there doesn't seem to be any idea of what is actually on the disks, even if they are masters they should surely have backups available somewhere!
I'm sure it won't be long before the usual reassuring platitudes will be trotted out by the MoD, but in the meantime I await a flood of emails - either re dead relatives, or chances to move some serious money from Nigeria.
Still, it's worrying that there doesn't seem to be any idea of what is actually on the disks, even if they are masters they should surely have backups available somewhere!
I'm sure it won't be long before the usual reassuring platitudes will be trotted out by the MoD, but in the meantime I await a flood of emails - either re dead relatives, or chances to move some serious money from Nigeria.
Join Date: Apr 2005
Location: France 46
Age: 77
Posts: 1,743
Likes: 0
Received 0 Likes
on
0 Posts
If they have already lost ones personal details - would it be a wise move to e-mail them? It would give them another piece of information to lose!!
PS. Perhaps someone could point out to them that one cannot usually dial an 0800 telephone number from overseas!!!
PS. Perhaps someone could point out to them that one cannot usually dial an 0800 telephone number from overseas!!!
Last edited by cazatou; 27th Sep 2008 at 10:57.
Sounds like an inside job by the Ministry of Spooks.....
Someone wants to try to work out who all the naughty people are who are criticising the RAF's 'leadership'
on PPRuNe.
Vauxhall salesmen report record sales of the latest Insignia, oddly enough the purchaser wanted black ones only, with high capacity batteries, larger alternators and 'special radios'.........
Just like that one over therrrrrrargh...................
Someone wants to try to work out who all the naughty people are who are criticising the RAF's 'leadership'
on PPRuNe.Vauxhall salesmen report record sales of the latest Insignia, oddly enough the purchaser wanted black ones only, with high capacity batteries, larger alternators and 'special radios'.........
Just like that one over therrrrrrargh...................
... or the culprit (or culprits) could be someone trying to steal their own records in order to hide the true reason they left, or were encouraged to leave, the RAF ... 
Can't believe no one has demanded that CAS / CINCAIR / AMP / Air Sec etc either resign or be sacked .....
Can't believe no one has demanded that CAS / CINCAIR / AMP / Air Sec etc either resign or be sacked .....
Join Date: Nov 2007
Location: SCOTLAND
Posts: 3
Likes: 0
Received 0 Likes
on
0 Posts
Fonejacker moment
Just tried the 0800 number(available at weekends as per MoD website guidance dated 26 Sep 08), had to endure several annoying automated messages before finally hearing the 0800 number was no more and the good number was now 01256 748 989. Rang the good number to hear they do not work at weekends, Great!!