The Information Commissioner's Office (ICO) is to look into a data blunder at The Register tech publication, which saw email addresses and names of thousands of readers exposed.
The Register accidentally sent 3,521 people the names and email addresses of 46,524 readers between 08:58 and 10:20 BST yesterday.
In a contrite tone, somewhat different from its typically irreverent manner, the publication took to its website to explain why the error occurred.
"Obviously, this was an error. The two-stage send process that is the norm for all of our mailers was over-looked because someone was in a hurry," the Register said.
"We would like to offer our genuine and humble apologies for the error. If you would like to vent at that someone, their email address is here: data@theregister.co.uk."
The Register was quick to contact the ICO about the breach. The data protection watchdog said it will investigate the matter before it takes any action.
The two-stage send process that is the norm for all of our mailers was over-looked because someone was in a hurry...
"We are aware of a possible data breach which may involve The Register," an ICO spokesperson said.
"We will be making enquiries into the circumstances of the alleged breach of the Data Protection Act before deciding what action, if any, needs to be taken."
The ICO has been quiet in handing out fines of late. The regulator needs proof people have been genuinely harmed by a data breach before it issues any monetary penalties.
Whilst in the case of The Register the data breach was not immediately serious, hackers could still use the emails to either spam or compromise accounts.
Given how simple people's passwords often are, just having an email address can be enough to inspire a cyber criminal to break into an account.
The Register felt the pain of a hack attack earlier this year when a number of domain registrars were compromised. Attackers changed Domain Name System (DNS) records to redirect Register readers to another site.
-
Should AI PCs be part of your next hardware refresh?AI PCs are fast becoming a business staple and a surefire way to future-proof your business
-
Westcon-Comstor and Vectra AI launch brace of new channel initiativesNews Westcon-Comstor and Vectra AI have announced the launch of two new channel growth initiatives focused on the managed security service provider (MSSP) space and AWS Marketplace.
-
ICO admits it's too slow dealing with complaints – so it's eying up automation to cut staff workloadsNews The UK's data protection authority has apologized for being slow to respond to data protection complaints, saying it's been overwhelmed by increased workloads.
-
AI recruitment tools are still a privacy nightmare – here's how the ICO plans to crack down on misuseNews The ICO has issued guidance for recruiters and AI developers after finding that many are mishandling data
-
“You must do better”: Information Commissioner John Edwards calls on firms to beef up support for data breach victimsNews Companies need to treat victims with swift, practical action, according to the ICO
-
LinkedIn backtracks on AI training rules after user backlashNews UK-based LinkedIn users will now get the same protections as those elsewhere in Europe
-
UK's data protection watchdog deepens cooperation with National Crime AgencyNews The two bodies want to improve the support given to organizations experiencing cyber attacks and ransomware recovery
-
ICO slams Electoral Commission over security failuresNews The Electoral Commission has been reprimanded for poor security practices, including a failure to install security updates and weak password policies
-
Disgruntled ex-employees are using ‘weaponized’ data subject access requests to pester firmsNews Some disgruntled staff are using DSARs as a means to pressure former employers into a financial settlement
-
ICO reprimands Coventry school over repeated data protection failuresNews The ICO said the academy trust failed to follow previous guidance, which caused a serious data breach
