Feeds

Oz 'pseudo-ID card' database racked by identity fraud claims

19 sacked, 92 resigned

High performance access to file storage

Australia's citizen database was routinely searched for personal reasons by government agency employees, some of whom have been sacked. Police are now investigating allegations of identity fraud resulting from the security breaches.

There were 790 security breaches at government agency Centrelink involving 600 staff. Staff were found to have inappropriately accessed databases containing citizens' information.

The databases are used to administer social security, pension and unemployment benefits. Prime Minister John Howard is said to be considering a proposal which would use this database for a new national identity card which is under consideration.

In total 19 Centrelink employees have been sacked and 92 others have resigned. Police are conducting investigations into five employees, they said.

The man charged with protecting citizens' privacy in relation to the project said that the government must do more to prevent this kind of security breach when so much vital information is gathered in one place.

"The Centrelink revelations are deeply disturbing,” Professor Allan Fels told Australian ABC radio. “I take some comfort from the fact that the government has caught them and punished them, but there is still a huge weight now on the government to provide full, proper legal and technical protection of privacy with the access card.”

The police have confirmed that investigations are ongoing after five referrals were made to it from Centrelink. At least one of the cases is believed to involve allegations of the establishment of fake identities to be used to receive payments.

The investigation took two years and involved the use of sophisticated spying equipment. Union officials said that staff had repeatedly been warned about the inappropriate accessing of records.

"Customer records should only be accessed for business reasons and we do not tolerate staff surfing the details of family and friends or peeking at records of neighbours," said Centrelink chief executive Jeff Whalan. "As a result we revamped our techniques to assist us to keep improper conduct in check, and we are committed to maintaining that process."

Australian government minister Joe Hockey, who is responsible for the smart card project, told Channel Seven news there that the privacy breaches will not derail the plan, which will continue to be implemented.

Editor's note, 29/08/2006: Some of our Australian readers pointed out inaccuracies in the original version of this story. These have been corrected. OUT-LAW apologises for these errors.

Copyright © 2006, OUT-LAW.com

OUT-LAW.COM is part of international law firm Pinsent Masons.

SANS - Survey on application security programs

More from The Register

next story
Dropbox defends fantastically badly timed Condoleezza Rice appointment
'Nothing is going to change with Dr. Rice's appointment,' file sharer promises
Audio fans, prepare yourself for the Second Coming ... of Blu-ray
High Fidelity Pure Audio – is this what your ears have been waiting for?
Record labels sue Pandora over vintage song royalties
Companies want payout on recordings made before 1972
MtGox chief Karpelès refuses to come to US for g-men's grilling
Bitcoin baron says he needs another lawyer for FinCEN chat
Number crunching suggests Yahoo! US is worth less than nothing
China and Japan holdings worth more than entire company
Zucker punched: Google gobbles Facebook-wooed Titan Aerospace
Up, up and away in my beautiful balloon flying broadband-bot
Apple DOMINATES the Valley, rakes in more profit than Google, HP, Intel, Cisco COMBINED
Cook & Co. also pay more taxes than those four worthies PLUS eBay and Oracle
prev story

Whitepapers

SANS - Survey on application security programs
In this whitepaper learn about the state of application security programs and practices of 488 surveyed respondents, and discover how mature and effective these programs are.
Combat fraud and increase customer satisfaction
Based on their experience using HP ArcSight Enterprise Security Manager for IT security operations, Finansbank moved to HP ArcSight ESM for fraud management.
The benefits of software based PBX
Why you should break free from your proprietary PBX and how to leverage your existing server hardware.
Top three mobile application threats
Learn about three of the top mobile application security threats facing businesses today and recommendations on how to mitigate the risk.
3 Big data security analytics techniques
Applying these Big Data security analytics techniques can help you make your business safer by detecting attacks early, before significant damage is done.