September 29, 2009 by Jenny Sanderson
Demon Internet has become involved in an embarrassing security failure after a spreadsheet containing the personal details of more than 3’600 account holders was sent to customers as an attachment on an email. The customers who found their information was compromised were on the company’s paperless billing system, one of the purposes of which is, ironically, to increase security.
The details revealed included business names, home and work addresses, telephone numbers, as well as usernames and passwords. Luckily for Demon, no bank or payment details were on the spreadsheet though troublingly, information on NHS trusts and police stations was included.
To their credit, once they realised the mistake, Demon acted quickly, isolating the affected group of customers and changing their use names and passwords. However, this may not be enough for them to escape the inevitable backlash.
With this no doubt in mind, the company released a statement in which they “confirm categorically that no customer accounts were accessed inappropriately during this time.” They also promised a review of all processes and procedures.
Related posts:
