Monday, September 28, 19:24
Home security Software error exposed ID numbers of millions of Danish citizens

Software error exposed ID numbers of millions of Danish citizens

ID numbersA software error on its tax portal government of Denmark exposed them ID numbers of 1,26 million Danish citizens. This figure accounts for one fifth of the country's total population.

According to local media, the error was discovered at the end of January, but has been around for five years (between 2 February 2015 and 24 January 2020).

The mistake and leak of personal information identified by Service for the Development and Simplification of Denmark (Udviklings-og Forenklingsstyrelsen or UFST), during an audit.

According to UFST, the error was found in TastSelv Borger, the official self-service portal used by Danish citizens to pay their taxes online.

But how did he expose the citizens' identity numbers?

Each time a user updated their information account in the section of the portal settings, his ID number was placed in the URL.

The URL is collected by analytical services executed on website. In this case by Adobe and Google.

According to UFST, companies were able to collect the identities of 1,2 million taxpayers.

These numbers are very important in Denmark. They are used for opening bank accounts, acquiring telephone numbers and many other essential activities.

Also, reveal more data about the owner. For example, they consist of ten digits, of which the first six are n date of birth of the citizen. They also show the sex of the owner (if the last digit is a single number, the owner is a man, and if it is even, then the owner is a woman).

However, the UFST service it reassured the citizens to a certain extent, saying how only the two Companies may have collected ID numbers. Nobody else. Therefore, there is no immediate risk of using numbers for one scam.

On the other hand, several security experts in the country have called for a wider scrutiny of the source code of the tax service portal, fearing there may be other errors.

Η DXC (formerly CSC), the software company that created the portal, said that correct the error immediately after its disclosure by the authorities.

Denmark is the third Scandinavian country facing a security issue at one of the government agencies services of. In 2015, sensitive data from the Swedish Transport Agency (STA) were uploaded to in cloud and some Serb IT professionals managed to gain access. In 2018, hackers they stole medical records that belonged to about half of Norway's population.

LEAVE ANSWER

Please enter your comment!
Please enter your name here

Absent Mia
Absent Miahttps://www.secnews.gr
Being your self, in a world that constantly tries to change you, is your greatest achievement

LIVE NEWS

The price of stolen RDP passwords is reduced

Cybercriminals reduce the value of RDP passwords. This move indicates how leaked usernames and ...

How to change the "server region" in Discord

Discord automatically selects a server region through which it routes your voice communications. However, you may find that the choice ...

Violations of the banking code are on the rise

The two most common obligations of the Code of Banking Practice, which are violated more often by financial institutions, are privacy and ...

How to control which CPU your Mac uses

The Central Processing Unit (CPU) is the control unit of your Mac. Its features determine how quickly your information is processed by ...

NASA: Looking for ideas for continuing missions in the dark

NASA wants ideas to continue missions to the moon in the dark, something that could be the key to ...

Amazon: What is Prime Day 2020 and when is it?

Prime Day is basically Amazon Black Friday. Below you will see all the relevant information we know so far about ...

TikTok: The ban on taking is rejected by the court

A federal judge has ruled out a Trump administration attempt to ban TikTok downloads for users in the United States. The decision gave ...

Experian breach: sensitive information is circulating on the internet

According to the South African Banking Risk Center (SABRIC), on August 19 the consumer, credit and business information services organization, Experian, ...

Ransomware: What would happen if the ransom payment was illegal?

Police always advise ransomware victims not to pay for criminal gangs that have encrypted their systems - and there are ...

Putin suggested cooperation in the US for the "end" of the election hack!

The President of Russia, Vladimir Putin, proposed to the USA a comprehensive program of measures, aimed at restoring the cooperation between the two countries ...