Hacked ServiceOntario Kiosks shut down
Some of Canada's leading privacy and security experts are in support of the government's decision to shutdown and investigate reported ServiceOntario kiosk compromises. The action, they say, is in compliance with Ontario's privacy laws as well as newly introduced best practices unveiled in an original publication: Managing Personal Information: Insights on Corporate Risk and Opportunity for Privacy-Savvy Leaders.
Primary author and security expert Claudiu Popa says "the recent compromise of four ServiceOntario locations is reminiscent of the fake debit and credit card readers and "skimmers" popular in the Greater Toronto Area over the past few years. These types of attempts on ATMs and kiosks are nothing new, so MGS acted appropriately in shutting down the other locations and notifying the public of the breach at the earliest opportunity."
"Managing Personal Information" addresses the privacy and security issues faced by the public sector with original content aimed at a broad audience of accountable leaders, directors and their trusted advisors. According to one recent study, the public sector is suffering from an almost 30% annual rate of growth in security and privacy compromises. "That kind of statistic points to the need for swift action, adequate disclosure and continuous improvement, all of which are specifically covered in the book. The Ministry of Government Services took the right initial approach in following its own GO-ITS policy framework by leveraging partners and involving law enforcement. We hope they will follow this up with the adequate application of monitoring and corrective controls in the future" says Popa.
The experts (www.PrivacyExperts.ca) collaborated on the uniquely Canadian publication in an effort to improve privacy and security practices at the higher levels of public and private leadership. The book provides exclusive new content along with a foreword by the Ontario Information and Privacy Commissioner, Ann Cavoukian. Additional information is available on the book's Web site at www.PrivacyRisk.ca.
Reader Comments