Personal data was too vulnerable, says critic
An investigation into what is being called the biggest hacking attack in Swedish history has revealed problems with how the authorities handle sensitive information, according to newspaper Dagens Nyheter.
Three years ago, hackers attacked the IT company, Logica, that the tax agency employs to help it deal with information about Swedish residents that is kept in a national registry. However, at the time, no one reported the incident to the police.
Then, in January of 2012, hackers got hold of the password to the Parliament's account at the registry. The registry contained some two decades of old account information, some with extremely simple passwords.
"The system has obviously had big flaws when it comes to security. That there are 20 years worth of old account information that no one had taken away is remarkable," Louise Yngström, a professor in computer and systems science, tells the newspaper.
"A comprehensive registry for everyone in Sweden should have more security," she says.
Two men, including Pirate Bay-founder Gottfrid Svartholm Warg, are suspected of having stolen registers from the Swedish Tax Agency, among others, and the case is being handled by the Stockholm district court.