security is borked
This is only the latest in a series of terrible breaches of data - Crapita not securing an S3 bucket with USS pension details on it. Other actors stealing data from LPFA and such like. I am now working on the assumption that I have been comprehensivly pwned.
I don't know if it is state actors or straightforward crims (assuming there is a difference) but we need a completely new approach to security. At present, it appears that I am responsible for policing any unauthorised use of my data and there is no recourse to get compensation from the leaker - perhaps that should be the case.
</rant>