El Reg in email address blunder

Fired!

Is what the culprit needs to be. No, not that way. Out a cannon!

How incredibly embarrassing!

... I've been outed as a reg reader!

Bad Reg, naughty Reg - wash your mail server out with soap and water, then stand in the corner of the datacentre and think about what you've done..... FACING THE WALL!

Thanks?

It is indeed an impressive list (and yes Neil, I found you on it)

I agree a notification to the 46k plus recipients would be in order. I can send you a copy if you'd like.

Sorry El Reg, but there is NO excuse!

Accidents happen

Noting how well our email addresses are used anyway on any site which bundles us up for marketting it isnt really much to worry about. Nearly any site wanting an account asks for our email and thats exactly what this site is too.

Obviously there must be an effort not to repeat this but I hope you dont give too hard a time to whoever did this (although I am sure they are getting plenty stick).

And at least you have the backbone to own up to it pretty quick.

For people who are worried on here I will remind you that nearly every stranger you talk to will ask your name and I am sure you give it. And for every account you sign up to online you have given away your email address. While we prefer to be masters of our own information we unfortunately are not.

Well...

At least the reg admitted to it giving exact numbers. More than other companies (ahem*Sony*ahem) would do.

Mistake

I didn't get it - could you please resend.

Thanks

so..

Come on, 'fess up - who from the staff is on tea making duties for a month, then?

Glad I used my old bt account to sign up, all those years ago, though!

Steven R

Well done!

And added to my woes, the spacebar on my keyboard has started to act funny... Coincidence? I surely think not!

But, as someone will undoubtedly point out, passing along the email addresses of 42k+ furry toothed, not entirely naive or defenseless geeks is not half as bad as say, your NHS leaving about the generous gift of names, numbers, addresses, whatever equivalent of SSN's you have over there, &t, for any old body to pick up, ???, and profit from. To that, I preemptively say: Bull cookies!

Still, you apparently saw fit to at least acknowledge the, heh, mistake quite promptly, thereby if not minimizing the potential damage and outcry, at least foisting responsibility for what follows on to the owners of these misplaced readers. Trebles all around!

In other words, welcome to humanity: the race was lost before it ever started.

Shit happens

Accidents happen - kudos for immediately owning up to it and holding your hands up, rather than trying to downplay it or pretend it didn't happen.

If the data leaked is just email addresses, I don't see it as too big a deal particularly.

This is seriously unfunny.....

It's one thing being outed as a member of the BNP or finding out I sign up for Strictly Come Dancing updates, but if people were to discover I'm a reader of El Reg?

The shame. I'd never live it down....

http://www.theregister.co.uk/2011/10/21/ico_public_secotr_data_breaches/

Hilarious irony.

No point posting anon since everyone here has my email/name now anyway! (or do they?)

Not fair!

I only got 46,493 sent to me.

I want the other 31

I'll drink to that!

This is really terrible. I shall be writing to the IPO immediately making clear the only acceptable way El Reg can compensate for this catastrophic error is to stand a pint for each transgression at its local hostelry.

All attendees will, of course, have the right to a proxy drink for the few unable to find the pub, or London, or ...

I got my copy...

Now I just need to start a competing website and spam everyone about it....

Was it a complete list of subscribers? I searched for a few old friends who I know used to be subscribers and didn't find them - but they may have long since unsubscribed.

Your pennace - should you choose to accept it.

Is to compose a tune, possibly along the lines of Sirius Cybernetics' delightful 'Share and Enjoy'. Then get a choir of a million robots to sing the email addresses and names of all your users, to this new melody.

Share and Enjoy!

Bring it on!

I don't care if my email address is in your list. Running a small piss-ant email service for the past ten years with lots and lots of mods of my own.

It's hard. Fucking rock hard - so bring it on.

On a slightly serious note: peeps should do a deep search for their email address on a number of engines - you may be surprised to find it!

I think you mean 46K ex readers!

subject says it all

Ooops

Thanks for the free e-mail addresses earlier. As we're signed up for the DPA too then I'm one person that isn't going to be spamming or selling those e-mail addresses.

No point in posting anonymously... I'm no longer anonymous anyway!

But good on you for putting your hands up and telling everyone that it had happened. I'm sure those of us who have this list will be responsible IT professionals... but we know what the chances of that are.

Let us know what the ICO has to say back...

You're forgiven

Not because it was an easy mistake (there's no excuse, really) but because you owned up immediately and accepted the embarrassment.

As some others have suggested, it would be useful if El Reg were to post a follow-up article explaining exactly how it occurred and what is being done to make sure it doesn't happen again - as a useful Case Study.

What list?

Sorry but the list does not appear to have been sent to me.

If I send you a Memory stick, can you lose that as well please?. Don't send it to me in the post, just drop it outside your offices on the way home tonight and I will pick it up.

Ta

P.S. If the list is encrypted, can you attach the password as well. Cheers.

P.P.S. Any Local Government Authorities been in touch with a job offer yet?

Why no outbound mail filter?

This seems like dereliction of duty.

Our Postfix servers have a header_checks rule:

# catch multiple recipients

/^(to|cc):.*\@.*\@.*\@/ REJECT Multiple "To:" addresses promote spam and identity theft. Try "Bcc:" or use a mailing list.

I am sure that something similar is available for El Reg's Exim server.

Oh quit worrying and whining... it's not like El Reg could possibly have spelt them correctly anyway.

Quick, lemme check my never-used-crap-web-based-mail...

Shoot. I am not one of the 3,521... Will you notify the 46,524, so that I know I should change to a further crap account, just for safety?

I think my new address will be: "registerlogin1234@hotmail.com"