Stories
Slash Boxes
Comments

SoylentNews is people

Swedish Agency Moved Nation's Secret Data to “the Cloud”

posted by cmn32480 on Wednesday August 30 2017, @10:18AM   Printer-friendly
from the are-you-kidding-me? dept.

Rich26189 writes:

Sweden's Transport Agency moved all of its data to "the cloud", apparently unaware that there is no cloud, only somebody else's computer. In doing so, it exposed and leaked every conceivable top secret database: fighter pilots, SEAL team operators, police suspects, people under witness relocation. Names, photos, and home addresses: the list is just getting started. The responsible director has been found guilty in criminal court of the whole affair, and sentenced to the harshest sentence ever seen in Swedish government: she was docked half a month's paycheck.

Story here:
https://www.privateinternetaccess.com/blog/2017/07/swedish-transport-agency-worst-known-governmental-leak-ever-is-slowly-coming-to-light/

Original Submission

 
This discussion has been archived. No new comments can be posted.
Swedish Agency Moved Nation's Secret Data to “the Cloud” | Log In/Create an Account | Top | 29 comments | Search Discussion
Display Options Threshold/Breakthrough Mark All as Read Mark All as Unread
The Fine Print: The following comments are owned by whoever posted them. We are not responsible for them in any way.

  • (Score: 2) by arslan on Thursday August 31 2017, @12:35AM

    by arslan (3462) on Thursday August 31 2017, @12:35AM (#561876)

    That doesn't sound like a thing unique to cloud. That sounds more like poor outsourcing control. People that use physical data centers move data all the time for various reasons, i.e. they lease space and move to another DC, they have backups moved by 3rd party specialists, etc. The moment you outsource any point in the whole process you're vulnerable unless you vet the company thoroughly including any sub-contractors.

    In this case it is particularly dumb to hand your data and operations to a 3rd party and allow them to move your data outside of the country especially since it is data belonging to a sovereign nation. IBM's cloud just so happens to be the end product but this really is a case poor outsourcing (it if should be outsourced in the first place).

    Call it for what it is, even if the cloud doesn't exist, an organization or entity could easily have done the same thing and hand the control of their data and operations to another party via outsourcing and the same shit would have happened.

    The MBAs and CxOs and decision makers (like the ministers in this case) have been drinking the outsourcing kool-aid much longer than before "the cloud" came along. The cloud, regardless of its deficiencies, just provides another medium for those idiots to re-apply all their failed strategies all over again and the sooner people call out the real source of the problem the better.

    Starting Score:    1  point
    Karma-Bonus Modifier   +1  
    Total Score:   2