Norwegian government website Altinn has logged thousands of people into the account of one unlucky man named Kenneth, reports Icrontic.
They were then able to see Kenneth’s financial information, as well as data about his wife and the company he was working for.
This year, it was worse. The tax results were published at around 6AM local time on Tuesday. By 9AM, over 200,000 people had tried to log on, and as a result, the server crashed.
From then on, things got progressively weirder. At noon, the traffic became stable and servers returned online. But by 6PM local time, every single user who tried to log in went right past the login screen, and found themselves logged in as Kenneth, a 36-year-old man from Oslo.
It is not known how many people got access to this information, or if any data was copied or downloaded. According to Jørgen Ferkinstad, communications director for Altinn, the episode happened because the real Kenneth had logged in and his information got stored in the server’s cache memory.
The real Kenneth has contacted his lawyer, but refused to give any statement.
How well do you know Internet security? Try our quiz and find out!
Tesla retreats from pioneering gigacasting manufacturing process, amid cost cutting and challenges at EV giant
No skynet please. After the US, UK and France pledge human only control of nuclear…
Microsoft's AI investments continue in south east Asia, after investments in Japan, Malaysia, Indonesia, as…
New chapter for LastPass as it becomes an independent company to focus on cybersecurity, after…
US FCC seeks to ban Chinese telecom firms at centre of national security concerns from…
Two updates to Anthropic's AI chatbot Claude sees arrival of a new business-focused plan, as…