Another day, another hacked system.

It's been a busy few days for data theft. On Tuesday we got an email from those lovely people at play.com telling us of "irregular activity" and as a result some email addresses may have been downloaded illegally (aka stolen). No passwords or other account details were taken as the theft was done via their email service provider.

Fast forward two days and another email, this time from TripAdvisor... "an unauthorised third party had stolen part of TripAdvisor's member email list."  Again, only email addresses and no passwords.

Both companies assure us that it affects only a small proportion of their customer base and at worst you may receive some unsolicited emails (spam) as a result of this incident. Of course there is the standard phrases thrown in too.... 'we take this very seriously' and 'we have taken the necessary steps to ensure this does not happen again'.

Surely these firms have a duty of care to us and the data they hold? In the case of play.com it happened in December 2010 so why are they only now telling us?

What can WE do? Honestly, very little. We place our faith in Companies to handle our personal data securely and we do this in good faith.

It does make you think ... clearly our email addresses alone are of value to someone!

site by DAJ