The Conservative Party has apologised after releasing a mobile phone app for its annual party conference that let members of the public log in as senior government ministers and view their personal details.
Dawn Foster, a columnist with The Guardian, discovered that a flaw in the app allowed users to log in as anyone attending the party conference, simply by entering an email address.
It meant the mobile phone numbers of all those attending the four-day event – journalists, party members and politicians, including senior government ministers – could be accessed. On Twitter, Foster showed how she had been able to log into the system as former foreign secretary Boris Johnson.
“It’s let me login as Boris Johnson, and just straight up given me all the details used for his registration,” she wrote. “I’m the most tech illiterate person alive, and I’ve done this, imagine there are plenty more security bugs.”
The loophole in the app was closed after the security breach was pointed out to the party but not before the details of some politicians had been accessed and in some instances changed.
A journalist from the BuzzFeed website said at least two cabinet ministers had received prank calls from the public as a consequence.
“The technical issue has been resolved and the app is now functioning securely,” a Conservative spokesman said. “We are investigating the issue further and apologise for any concern caused.”
A spokesman for the Information Commissioner’s Office said: “We are aware of an incident involving a Conservative Party conference app and we will be making enquiries with the Conservative Party.
“Organisations have a legal duty to keep personal data safe and secure. Under the GDPR they must notify the ICO within 72 hours of becoming aware of a personal data breach, if it could pose a risk to people’s rights and freedoms.”
Last year, May’s major conference speech descended into chaos after she suffered a coughing fit, a prankster gained access to the stage to hand her the form given to sacked employees, and some letters of her party’s slogans dropped to the ground from a sign on the stage behind her as she spoke.
“I think people will see a really impressive conference all round this year,” Conservative Party chairman Brandon Lewis told Sky News before news of the security breach was revealed.
Related posts
Interviews
Comment
Women Lead: The story of an entrepreneurial scientist
I first arrived in Scotland over 20 years ago. I had £75 in my wallet and a scholarship offer to do a PhD at the University of Edinburgh. Sometimes I…
Please mind the gap… or healthcare may fall
Imagine sharing a lengthy train journey with others. From beginning to end, imagine how often you might hear ‘mind the gap’ messages about embarking and disembarking safely. Picture how navigating…
Women Lead: My journey from Dragons’ Den to Silicon Valley
Following her appearance on Dragons’ Den, Sheila Hogan, serial entrepreneur, founder and chief executive of digital legacy vault, Biscuit Tin, shares her experience of her time in the Den and…
Look anywhere – the future is ‘aged tech’. But Scotland needs to be more adventurous
Scottish Care, as the representative body of independent social care providers of care home, care at home and housing support services, has been working over several years with colleagues in…
Women Lead: Engineer turned entrepreneur
We are always fascinated by other people’s stories. It’s how we connect, grow and learn from each other. Until very recently I always felt like I didn’t have a story to tell. Who…
‘Women – together we will change the dynamic in tech’
I was inspired to start a career in technology when personal computers were in their infancy and the internet decades away. My childhood dream of becoming a scientist was shaped by…
It’s time to change the future of tech apprenticeships – and we need your help
In his latest exclusive column for Futurescot, Ross Tuffee, chair of the Skills Development Scotland (SDS) Digital Economy Skills Group, calls on tech employers to get involved in shaping the…
What AI difference a year makes
Amazingly, it’s been one year since the publication of Scotland’s AI Strategy. And what a year it has been. Demanding but rewarding, with good progress made and great foundations laid…