 | This article needs additional citations for verification .(December 2007) |
This page is a time-line of published security lapses committed by governmental entities in the UK , including data security breaches. This article does not attempt to capture security vulnerabilities.
 | This section is empty. You can help by adding to it. (February 2013) |
| | This section is empty. You can help by adding to it. (February 2013) |
 | This article related to government in the United Kingdom or its constituent countries is a stub. You can help Wikipedia by expanding it. |
  | This article related to the history of the United Kingdom or its predecessor states is a stub. You can help Wikipedia by expanding it. |
In cryptography, plaintext usually means unencrypted information pending input into cryptographic algorithms, usually encryption algorithms. This usually refers to data that is transmitted or stored unencrypted.
Identity theft occurs when someone uses another person's personal identifying information, like their name, identifying number, or credit card number, without their permission, to commit fraud or other crimes. The term identity theft was coined in 1964. Since that time, the definition of identity theft has been statutorily defined throughout both the U.K. and the United States as the theft of personally identifiable information. Identity theft deliberately uses someone else's identity as a method to gain financial advantages or obtain credit and other benefits, and perhaps to cause other person's disadvantages or loss. The person whose identity has been stolen may suffer adverse consequences, especially if they are falsely held responsible for the perpetrator's actions. Personally identifiable information generally includes a person's name, date of birth, social security number, driver's license number, bank account or credit card numbers, PINs, electronic signatures, fingerprints, passwords, or any other information that can be used to access a person's financial resources.
Laptop theft is a significant threat to users of laptop and netbook computers. Many methods to protect the data and to prevent theft have been developed, including alarms, laptop locks, and visual deterrents such as stickers or labels. Victims of laptop theft can lose hardware, software, and essential data that has not been backed up. Thieves also may have access to sensitive data and personal information. Some systems authorize access based on credentials stored on the laptop including MAC addresses, web cookies, cryptographic keys and stored passwords.
Her Majesty's Revenue and Customs is a non-ministerial department of the UK Government responsible for the collection of taxes, the payment of some forms of state support, the administration of other regulatory regimes including the national minimum wage and the issuance of national insurance numbers. HMRC was formed by the merger of the Inland Revenue and Her Majesty's Customs and Excise, which took effect on 18 April 2005. The department's logo is the St Edward's Crown enclosed within a circle.
The Registered Traveler Pilot Program was an airline passenger security assessment system tested in the United States air travel industry in 2005. It was used in several U.S. airports in a voluntary pilot phase and continues in operation in several airports around the country. It is administered by TTAC, the Transportation Security Administration (TSA) office responsible for Secure Flight, the replacement for the Computer Assisted Passenger Prescreening System (CAPPS) and the canceled CAPPS II counter-terrorism system. Registered Traveler is a public and private partnership between the TSA and the Registered Traveler Interoperability Consortium (RTIC) providing rules and standards for private Enrollment Providers that sign up participants. At 11:00 p.m. PST on June 22, 2009, Clear ceased operations because Clear and its parent company, Verified Identity Pass, Inc., filed for bankruptcy. The company was then acquired by Alclear LLC and "Clear lanes" were opened at Denver International Airport, Orlando International Airport, Dallas/Fort Worth International Airport, and San Francisco International Airport. Clear is currently operating at 60 airports, airports, stadiums, and other venues nationwide as of January 2020.
A passenger name record (PNR) is a record in the database of a computer reservation system (CRS) that contains the itinerary for a passenger or a group of passengers travelling together. The concept of a PNR was first introduced by airlines that needed to exchange reservation information in case passengers required flights of multiple airlines to reach their destination ("interlining"). For this purpose, IATA and ATA have defined standards for interline messaging of PNR and other data through the "ATA/IATA Reservations Interline Message Procedures - Passenger" (AIRIMP). There is no general industry standard for the layout and content of a PNR. In practice, each CRS or hosting system has its own proprietary standards, although common industry needs, including the need to map PNR data easily to AIRIMP messages, has resulted in many general similarities in data content and format between all of the major systems.
The National Insurance number is a number used in the United Kingdom in the administration of the National Insurance or social security system. It is also used for some purposes in the UK tax system.
A hardware security module (HSM) is a physical computing device that safeguards and manages digital keys, performs encryption and decryption functions for digital signatures, strong authentication and other cryptographic functions. These modules traditionally come in the form of a plug-in card or an external device that attaches directly to a computer or network server. A hardware security module contains one or more secure cryptoprocessor chips.
Mobile banking is a service provided by a bank or other financial institution that allows its customers to conduct financial transactions remotely using a mobile device such as a smartphone or tablet. Unlike the related internet banking it uses software, usually called an app, provided by the financial institution for the purpose. Mobile banking is usually available on a 24-hour basis. Some financial institutions have restrictions on which accounts may be accessed through mobile banking, as well as a limit on the amount that can be transacted. Mobile banking is dependent on the availability of an internet or data connection to the mobile device.
Google Pay Send, previously known as Google Wallet, was a peer-to-peer payments service developed by Google before its merger into Google Pay. It allowed people to send and receive money from a mobile device or desktop computer.
FIS, Inc. is an American multinational corporation which offers a wide range of financial products and services. FIS is most known for its development of Financial Technology, or FinTech, and as of Q2 2020 it offers its solutions in three primary segments: Merchant Solutions, Banking Solutions, and Capital Market Solutions. Annually, FIS facilitates the movement of roughly $9 trillion through the processing of approximately 75 billion transactions in service to more than 20,000 clients around the globe.
The Medical Training Application Service was an on-line application system set up under the auspices of Modernising Medical Careers in 2007 and used for the selection of Foundation House Officers and Specialty Registrars, and allocating them to jobs in the UK. Its implementation was heavily criticised both in the press and within the medical profession, and its operation was marked by the resignation of key staff and serious security breaches. The system affected junior doctors, and so every qualified doctor in the UK who had not yet attained Consultant status.
Internet fraud prevention is the act of stopping various types of internet fraud. Due to the many different ways of committing fraud over the Internet, such as stolen credit cards, identity theft, phishing, and chargebacks, users of the Internet, including online merchants, financial institutions and consumers who make online purchases, must make sure to avoid or minimize the risk of falling prey to such scams.
A data breach is a security violation, in which sensitive, protected or confidential data is copied, transmitted, viewed, stolen or used by an individual unauthorized to do so. Other terms are unintentional information disclosure, data leak, information leakage, and data spill. Incidents range from concerted attacks by individuals who hack for personal gain or malice, organized crime, political activists or national governments, to poorly configured system security or careless disposal of used computer equipment or data storage media. Leaked information can range from matters compromising national security, to information on actions which a government or official considers embarrassing and wants to conceal. A deliberate data breach by a person privy to the information, typically for political purposes, is more often described as a "leak".
The loss of United Kingdom child benefit data was a data breach incident in October 2007, when two computer discs owned by HM Revenue and Customs containing data relating to child benefit went missing. The incident was announced by the Chancellor of the Exchequer, Alistair Darling, on 20 November 2007. The two discs contained the personal details of all families in the United Kingdom (UK) claiming child benefit, of which takeup in the UK is near 100%.
Credit card fraud is an inclusive term for fraud committed using a payment card, such as a credit card or debit card. The purpose may be to obtain goods or services or to make payment to another account, which is controlled by a criminal. The Payment Card Industry Data Security Standard is the data security standard created to help financial institutions process card payments securely and reduce card fraud.
A credit card is a payment card issued to users (cardholders) to enable the cardholder to pay a merchant for goods and services based on the cardholder's accrued debt. The card issuer creates a revolving account and grants a line of credit to the cardholder, from which the cardholder can borrow money for payment to a merchant or as a cash advance. There are two credit card groups: consumer credit cards and business credit cards. Most cards are plastic, but some are metal cards, and a few gemstone-encrusted metal cards.
Data erasure is a software-based method of overwriting the data that aims to completely destroy all electronic data residing on a hard disk drive or other digital media by using zeros and ones to overwrite data onto all sectors of the device in an irreversible process. By overwriting the data on the storage device, the data is rendered irrecoverable and achieves data sanitization.
Carding is a term describing the trafficking and unauthorized use of credit cards. The stolen credit cards or credit card numbers are then used to buy prepaid gift cards to cover up the tracks. Activities also encompass exploitation of personal data, and money laundering techniques. Modern carding sites have been described as full-service commercial entities.