A major data breach in Sweden led to all the vehicle and licence register uploaded to cloud servers. The information was also emailed to marketers.
The scarier part about the leak is the register contains information on individuals at present in witness protection programs. The register also contains information about the vehicles of police and military officials.
The reports leaked also contain the weight of all the roads and bridges in Sweden.
This is a huge security threat the defects of every vehicle of the military can be accessed by anyone.
The leak is also a threat to a number of citizens. The photos, names and addresses of all the members of the witness protection program, special forces, air force and the police was part of the leaked report.
Media has reported the breach has been directly traced to the Director General of Transport Agency, Maria Agren. This January, Maria Agren was fired for “undisclosed reasons.”
The data breach came to light when Agren was fined 70,000 kronor (5.5 lakhs.) The reason for the fine was revealed as “careless with secret information.”
In April 2015, under Maria Agren’s ordered and outsourced the management of vehicle and licence register to IBM.
Although, the Swedish Government does not have an issue with giving IT security and data but only after a security audit is done.
Maria Agren failed to get a thorough security audit done. This led to two Eastern European security professionals handling the data with no proper clearance.
The security professionals uploaded the data on the IBM cloud servers without a proper audit for the servers.
