Any advance on 1969?

Out tit witted police farce have done a fabulous job of applying for planning permission for a stable after the horse has bolted with this one. Their collective knee has jerked so hard they've kicked their own teeth out.....

The blanket ban on the use of IT off base shows a tremendously slender grasp of the realities of the real world. As well as banning the use of flight planning laptops off base they're also restricting us using PDAs too. Laptops and PDAs that have nothing secret, sensitive or interesting on them.

I'm going to suggest that as our aircraft have a few computers on them then we should consider not leatting those off base. In fact, my flying suit's got my name on it.... Better leave that on camp to.....

I do despair sometimes.... :ugh:

I too recieved the letter yesterday. I pvr'd over a year ago and this was the first letter of any sort I had been sent.

It was bound to be a smack head needing a quick buck. He'll have nicked it and sold it on quickly. The information is unlikely to be used and has most likely been deleted/ ignored.

The same information could most likely be found by looking through your rubbish!

Yes, it shouldn't have happened. Yes, heads should roll. As for compensation/courts ... forget about it, your wasting your time.

..... and yes, my details were on the laptop!

What on earth is going on at the MOD?
Letter number 3 arrived this morning for my youngest, every one exactly the same!
A competition could be started, who gets the most copies of the same letter:ugh:

Maybe he has mine. I haven't received any letters even though the phoneline confirmed that my data was on the laptop.

Class action anyone?

Off to see my MP next week, having found out that the MOD lost some of my personal data. Then on to legal advice, I suspect; the Data Protection Act states that data can only be held for as long as it is required; why they're still keeping personal data from when I applied to join up is quite beyond me, but I'm reasonably sure that there are some tough questions to be asked.

Off to see your MP eh, then legal advice.

So what "tough questions" have you got planned then.

Stoppers, the CIS-pig iPlods have always floundered about in the dark ages of IT! Some bristling little Stasi-type once thought that, by using the squadron BBC Master to calculate turn range data, I was breaking his Rules. "Wot's it going to be used for?", he demanded. "You don't Need To Know", I explained, "Anyway, trignometry is hardly a state secret!". Fortunately the Boss told him to do one.

I'm intrigued to know how AAR trails can be managed away from base if Plod prevents the AARCs from using planning software.

A few 24 hr delays in expensive locations whilst everything is laboriously faxed back and forth, perhaps?

Back in the days of steam-planning AAR trails, there was often an extra day built in to allow the AARC with his (they were always 'him' back then) charts, dividers, Dalton spinwheel, piece of string (honest!), lodestone, quadrant and abacus to crunch his numbers. That was for relatively straightforward trails such as Akrotiri - UK. But nowadays the luxury of sufficient people and time to cope without the use of computers has disappeared.

I suppose you can always go to an Internet cafe and Google for some MSFS geek's flight planning website?

Or maybe the iPlods will have to accompany you around the world, with your flight planning laptops manacled to their trotters with a stainless steel chain?

The Administrators never acknowledged my letter informing them of my move to France - only sent because it meant I was no longer liable for Reserve Service.

Perhaps MOD could arrange for Paymaster to add a one sentence statement to the P 60's they will shortly be dispatching worldwide as to whether or not the recipients personal data was lost on this computer.

Miss PN2 received her letter today. It was dated 24th Jan. I guess the 11 day delay is because the post office couldn't handle half a million letters on day 1.

When Mrs PN saw the requirement to prove identity her reaction was a more volcanic reaction than some mentioned here earlier.

The only bright spot is that Miss PN2 is now Mrs xx1. However Mr xx1 is probably going to get a letter too.

I'm not sure which is worse:

1 - losing data on those who applied, (we're interested in you, but we don't respect your rights, and we're not very good at paying on time, so continue at your peril)

2 - those who failed FATs/AIB/OASC (here's another kick in the teeth, look on the bright side - we're not c@cking up your pay)

or 3 - those who did join (if you can't take a joke you shouldn't have joined, and we still reserve the right to c@ck up your pay,allowances etc)

or 4, for those who applied, joined, served and left: you thought you'd got away but military admin is going to haunt you til the day you die! :ugh:

As the ex-Miss PN2 observed, it is a matter of luck that she got the letter as she is now on her 4th or 5th address. She expects Mr XX1's letter to be going round the bazaars too.

She also wonders which part of the database her info was. Was it dark blue or light blue?

:mad:

got my letter today

all my info is now in someones hands cheers:D

passport number
name
ni number
and bank details

another cock up by someone

and what the fook is all that info doin on a laptop in the back of someones car :mad::mad::mad::mad:

MoD Hiring Laptops?
 

I understand MoD is now hiring laptops!

Despite best efforts, there are still a few laptops left in MB, but the recent ill-thought-out directives (issued with the aim of covering Swiss Wotsisname's Arse rather than with any genuine intent of protecting data) prevent the MoD from using its own!

As a result, they are having to hire-in laptops, which don't come under the edict, so can be taken off-unit without breaching the regulations.

You couldn't make it up (or perhaps I just did).

F

Everyone is rightly pissed off at the stupidity of having so many records on the one laptop (leaving the location aside for a moment). It has been suggested that a large qty of info of one classification becomes, in aggregate, a higher classification... a principle I recall too.

Question is (and I have been wondering this for a while) how then is JPA classified? It does contain an aweful lot of (admittedly often wrong:\) data on serving personnel. Some are rightly concerned about the danger of it falling into the worst hands... what if JPA is successfuly hacked? :eek: It may be difficult but the scale of the 'reward' must dictate that it be worth some effort. Terrorist access to JPA would be potentialy worse since all on it are guarenteed to be serving, this laptop data is not so 'pure' in that many never joined.

Could a cunning terrorist corrupt JPA in order to prevent those serving from recieving their pay? Just imagine what it would do to morale and retention if thousands of servicemen and women were underpaid every month and nothing was done about it...

If young geeky lads can break into the US defence computers then I am sure that JPA would be a stroll in the park for a determined computer criminal.

I don't think it will take a cunning terrorist, JPA seems to be able to do this all by itself....:(

On reflection I think that any would-be hacker would be well advised to leave JPA alone... I think most would agree that the destruction being wrought from within will be more effective than that possible from without...:mad:

Edited for muppetry.

JPA is without doubt the greatest act of sabotage inflicted on the British Forces. For negative retention alone it is priceless. Why would a terrorist or foreign power want to hack in?

No member of Al Qaeda could ever hope to emulate the damage done to the Military by Nu Labour, aided and abetted by the civil serpents.

Well, yesterday came home from work to be greeted by the 'oops we seem to have made an error' letter, however it was not for me it was for the previous occupant of the MQ only 6 yrs out of date!!! :ugh:

Take it for action. You can be sure that someone else has yours.

The numbers involved are so huge, and we have a date as early as 1969, that it is almost a racing certainty that everyone is on it.

Team MOD
 

Just to add to the list, though I`m sure its long and distinguished.....like erm...well...TGQ

Found out, I too, am part of the many whose details are spread wide over the world; though I wasnt privy to a letter. My folks up North had the honour to receive it, the letter had been posted to a house I hadn`t lived in for over 10 years...
Go team MOD....

As Hudson said in "Aliens"

"howd do i get out of this chicken S!"t outfit"..

So if the design and location of our outside-the-wire SFA weren't enough of a giveaway, the database with our previous (!) addresses should confirm where we all live in large numbers. joy.

My data has been lost, photocopies (with nonessential information redacted and instructions to destroy) sent to get full details of what was held on me.

I've asked MoD to confirm that they accept responsibility and thus liability in the event of my being prejudiced by their negligence. What is particularly galling is that the letter spins the incident as a "theft" rather than as a catastrophic failure in security at many levels that allowed the theft!

Letter to Information Commissioner and MP will follow...as for ID cards, no way, and even the Census is starting to look dubious (US contractor in line for it....how safe will that data be?!?!)

The only way to stop the cavalier attitude to personal data is to have an automatic entitlement to compensation in the event of loss. Say £500 for each person whose record is lost. Multiply that by 600,000 (or even 25million!) and you have a very large incentive to look after data properly!

As posted at # 7, my daughter has also had “some very personal” data lost on this laptop.


Since the incident she has received a letter explaining the situation with a mega apology from the MOD.


She also rang the help line and has since received two calls from them keeping her informed of developments.


She is more than happy with the way she has been treated throughout this incident.


However what struck me was her attitude (she is only 20). Her main thoughts were for the poor lad that has lost the laptop: no career, no sympathy, and no support. All because of the way the mass media, politicians and the mass population get on the band wagon to blow up an incident out of all proportion and only because it’s the in thing at the moment.


Her words: “Dad, I stand more chance of my personal details being nicked and used from Amazon, Ebay or Paypal than that laptop being stolen by people who are going to actually use the data”.


I must admit I am quite proud of her lack of “I’m going to take the entire world to court, and I demand an explanation, and I want blood” type attitude.


Can’t fault her and certainly proud of the fact that she is not one of the “where there is a blame, there is a claim" culture”

Srennaps, well done your daughter. I think most on here are not so much concerned with 'hang the guilty b^st^rd but how and why was all that information on the laptop in the first place.

Who actually supervised the procedures?

Now the men in grey suits are quite happy to say 'we make the policy and we can't be expected to resign if someone doesn't follow the rules.'

It is inconceivable that a junior officer could collect and collate all that material on his own. Someone, somewhere set up a system or process where he was able to get that data. Was it authorised by someone who has yet to hold his hand up?

Even the regional 1* is unlikely to have needed that quantity of data.

Just what was actually going on?

That is THE key question that has not been answered. I am amazed with the military contacts on this site that no more information that may help answer your question has come to light.

PN,

No disrespect but I think it comes down to “Hind sight is a wonderful thing”.

Since the IT revolution in the RAF (when it finally sunk in to officers that computers were a good thing) there has been paranoia about holding data.

There has been an attitude of “the more we hold, the better it must be”.

The amount of un-usable or not required data on computers has grown and grown since that revolution in the early nineties.

Sadly the processes to keep, and control data has not really changed since those early days and more importantly processes have not even changed with the recent loss of data in other Government departments.

The system was there to evolve as time went on but let’s face it when it comes down to IT (In the RAF) it does not happen until it is too late. We are not good at it.

In the job I used to be in a few years ago, a couple of quotes I remember :

“We have no reason to move from MS DOS to Windows 3,1 and we have no requirement for colour monitors.

More recently:

We will stay with Windows NT as we have no need for Windows 2000 or XP.

I have no idea what the policy is on Vista but I have no doubt that the RAF will get it 3 years after the rest of the world.

The point I am trying to make is that while there is such a negative attitude towards change within IT there will always be complacency and ultimately mistakes will be made.

Now that is exactly the kind of attitude that I am talking about. The rest of the corporate world seems to manage without SP1 but the MOD (RAF) cant.

I remember an IT security type policeman back in 2002 stating that if it was not for him Bill Gates and Windows 2000 would have gone under. Strange he is still a copper and Bill Gates is still rich.

Realise that this software is tested in places that you can’t even imagine and the addition of SP1 will have no impact on your security requirements.

Based on your attitude you might as well wait for SP2 (because there will be a release in the future). That way you are guaranteed to get Vista 3 years after the rest of the world.... just like previous operating systems.

Actually had the reverse paranoia about 4-5 years ago (?) when the FOI came in.

There was a massive clear out of paper and instructions to clean out old files, computer files and the like. The delete folder was to be emptied at switch off etc.

The main driver was to avoid being caught by the Act. The more we held the less likely we would be to know we held it and thus could be open to charges if we unwittingly concealed something.

At the same time the D CinC STC, now CinC Air, declared the arrival of the paperless office. Of course that didn't work as we didn't have the scanner/filer/shredder systems in place. :}

On holding data, I took over a job that had been gapped. With the job came about 6 filing cabinets but no keys. I managed to get through 3 of them before I was posted. One of them contained ancient reports on many of the staff when they had been students. Like a priest I kept my council. Twenty years on I can reveal that one highly respected instructor had a very marginal pass when he was first trained. Still it proved the initial assessment and subsequent training system all worked.

it gets better, cos they then sent letters to everyone on the computer, to the addresses they had at the time, which include service personel living in or used to live in ireland!! i was lucky enough that my old address was on the patch and my mate lives there now, he got my letter, which contained plenty of personal details.

"Upgrading" to Vista
 

No it doesn't.
There is almost zero uptake of Vista in the corporate world, the only Vista PC's in most larger organisations are laptops or similar which won't run XP.
Any PC coming into the place I work (>5,000 PCs) that comes with Vista is "down-graded" to XP before it goes onto a user's desk. We are still buying brand-new Dell desktop PCs with 512MB RAM and ~2GHz Celeron chips which come with XP. These wouldn't have enough memory, CPU or graphics power to run Vista, but are entirely adequate for XP / Office2003. A roll-out of Vista will require us to replace or upgrade thousands of desktops. It ain't going to happen for at least another two or three years, by which time our policy may well have changed to specify Linux/OpenOffice for light users, if only someone can come up with an Outlook-compatible email client + calendar manager + contact manager. I live in hope

Ouch!! This is going to hurt:eek: Particularly as they have named him.

http://www.thesun.co.uk/sol/homepage...icle791210.ece

For Crying Out Loud!!!!:eek:

Took a laptop to the pub, got sh!t faced and left it behind.:mad:

Words fail. After all the publicity, I realy despair ..... :ugh:

Hole, swallow and the S-word all seem reasonable options.

So one dark blue and one brown one. Light blue turn next?

Fit laptop bags with thermal destruct charges?

At least one hopes that secret information means personal or private or at worst restricted.

Pc/Laptop losses
 

aka

Fast Track Promotion... !!!

I doubt Capt Badger's laptop would be above Restricted. The man is clearly a fool anyway.

There are further questions about the 600,000 records lost however. I did the security officer course and subsequent secondary duty (pain in the arrse, RAF police are the best friends you will ever have in this thankless task). It was my job to know at least a little about the JSP 440. So I was left scratching my head, following my letter from MoD saying my details were lost:

- individual protective marking of records: surely Restricted-Staff.
- aggregate protective marking of entire database: I would say Secret (given the tests for protective marking), at least Confidential. Not to be on a bog-standard laptop or IT system.
- Need to hold data: My lost record is 10 years old. I have a corresponding Service record. Is there any need to keep both? If you don't need it, destroy it (and ensure a destruction certificate etc). At the very least, my record should have been archived.
- "Need to know": Does anyone need to have download access to 600,000 records?
- Laptop authorisation: I used to have to sign a Restricted laptop out in advance. Pain in the backside for NATO meetings especially! Who was responsible for the establishment IT security procedures? Normally the CO - in name only - delegated downwards.
- All of the above. We know a hapless matelot left a laptop in his car at the first sniff of rum on a barmaid's apron :}. Walk the plank he should, but the ship is leaking big time, the fish is rotting from the head down etc.... This was not an opportunistic theft (as my letter spun it) or down to an individual error of judgement. Security is supposed to be multi-layered, to prevent one individual making such a mistake.

From the photo of the laptop it looks rather swish for the 'best value for money' or the 'cheapest money can buy' laptop.

Bit like the 777 crash I be we can come up with some good theories and rumours.

I would almost hazard a guess that:

1. It was a private laptop because the security clamp down impinged on his ability to do work.

2. He could have used a company laptop but this would have meant collecting and returning it perhaps out of hours.

3. He took it into the pub to stop it being nicked from his car, assuming he was not on public transport.

Simply the whole laptop issue is fraught.