- About HMRC Is Shite
- RTI Resources
- Tax Insurance
- About KenFrost.com
- Contact Me
Dedicated to the taxpayers of Britain, and the employees of Her Majesty's Revenue and Customs (HMRC), who have to endure the monumental shambles that is HMRC.
Wednesday, 15 April 2009
Concept Business Systems Ltd have advised me that they have identified a system weakness, within the HMRC website, that might be exploited by hackers.
Seemingly the "vulnerability allows hackers to traverse directories on the server and include files which wouldn't ordinarily be available".
They go on to say:
"The sub-domain in this PoC (Proof of Concept) may not contain any information which puts tax-payers at risk. However, it may contain sensitive database information which could pose a significant security risk to everyone involved.
Either way, a hacker with virtually open-access to a supposedly secure system can only lead to further problems."
Any IT experts out there care to comment on this, eg how serious is this weakness?
Tax does have to be taxing.
HMRC Is Shite (www.hmrcisshite.com), also available via the domain www.hmrconline.com, is brought to you by www.kenfrost.com "The Living Brand"