"This could be very serious if it's been around for a long time. An absolutely insane flaw in how easy it is to find. The vulnerability allowed individuals to navigate into the accounts of other companies simply by pressing the browser's back button, potentially exposing confidential information including directors' home addresses, email addresses and dates of birth."
"We are aware of an issue with our WebFiling service and have closed it while we investigate. We apologise for any inconvenience to our customers. The platform is widely used by businesses across the UK to submit official documents such as annual accounts, confirmation statements and other statutory filings."
"Cybersecurity experts say vulnerabilities of this nature could create opportunities for criminal activity, particularly where sensitive corporate information is involved. Personal data such as directors' home addresses and dates of birth could potentially be exploited for fraud or identity theft."
Companies House shut down its WebFiling service following discovery of a critical cyber vulnerability that enabled unauthorized access to sensitive business information. The flaw allowed users to navigate into other companies' accounts by using the browser's back button, potentially exposing confidential data including directors' home addresses, email addresses, and dates of birth. Tax Policy Associates founder Dan Neidle identified and reported the vulnerability, warning of serious implications if it had persisted undetected. The suspension disrupts routine company filings including annual accounts and confirmation statements while technical teams investigate the breach's scope and determine whether improper data access occurred.
#cybersecurity-vulnerability #data-breach #companies-house #identity-theft-risk #government-services-disruption
Read at Business Matters
Unable to calculate read time
Collection
[
|
...
]