Feeds

Staff at UK mobile co sold customer records

Info Commissioner recommends jail for miscreants

Internet Security Threat Report 2014

Updated Staff at an unnamed mobile operator have been selling customer details to the competition, and the Information Commissioner reckons that it will take a spell in chokey to stop the leaks.

According to the BBC, a T-Mobile spokesman has confirmed that T-Mobile is the company in question. The spokesman tells the BBC that the company alerted the Information Commission, saying that the data was sold "without our knowledge."

Customers numbering "many thousands" have had their details - including contract-renewal dates - lifted by staff working at the operator in question and sold to agents, who then cold-call the customers to offer alternative contracts. But the Information Commissioner complains that fining the ne'er-do-wells isn't enough, and suggests that locking them away is the only language they'll understand.

The details come as part of the Commissioner's ongoing campaign in favour of government proposals to introduce a prison term for those in breach of the Data Protection Act. This demonstrates that it's not just banks and doctors who have commercially-valuable information that can be stolen by individuals employed by the company.

In this case, it was enough information for a broker to call up just before a contract expires and offer an alternative, for which the brokers have apparently paid "substantial amounts of money". So much money, according to the Commissioner, that the threat of a fine is simply ineffective:

"The existing paltry fines... are simply not enough to deter people from engaging in this lucrative criminal activity. The threat of jail, not fines, will prove a stronger deterrent."

Given the number of cold calls received by every mobile phone user in the UK it would be tempting to think the information wasn't that valuable - but we don't know exactly what other information could have been exposed. Plus there is also an obvious principle at stake.

Strengthening Section 55 of the Data Protection Act could make it riskier for journalists to find information, though apparently we'll get a "public interest" defence to go with the new custodial sentences. ®

Updated: This story has been updated to include mention of the BBC's story on the matter.

Beginner's guide to SSL certificates

More from The Register

next story
Download alert: Nearly ALL top 100 Android, iOS paid apps hacked
Attack of the Clones? Yeah, but much, much scarier – report
Broadband sellers in the UK are UP TO no good, says Which?
Speedy network claims only apply to 10% of customers
Virgin Media struck dumb by NATIONWIDE packet loss balls-up
Turning it off and on again fixes glitch 12 HOURS LATER
BEST EVER broadband? Oh no you DIDN'T, Sky – ad watchdog
Rival BT moaned that claim was misleading
Fujitsu CTO: We'll be 3D-printing tech execs in 15 years
Fleshy techie disses network neutrality, helmet-less motorcyclists
Facebook, working on Facebook at Work, works on Facebook. At Work
You don't want your cat or drunk pics at the office
Soz, web devs: Google snatches its Wallet off the table
Killing off web service in 3 months... but app-happy bonkers are fine
prev story

Whitepapers

Why and how to choose the right cloud vendor
The benefits of cloud-based storage in your processes. Eliminate onsite, disk-based backup and archiving in favor of cloud-based data protection.
Forging a new future with identity relationship management
Learn about ForgeRock's next generation IRM platform and how it is designed to empower CEOS's and enterprises to engage with consumers.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
Getting ahead of the compliance curve
Learn about new services that make it easy to discover and manage certificates across the enterprise and how to get ahead of the compliance curve.
Top 5 reasons to deploy VMware with Tegile
Data demand and the rise of virtualization is challenging IT teams to deliver storage performance, scalability and capacity that can keep up, while maximizing efficiency.