A data breach at the Dutch Land Registry, Kadaster, has exposed the addresses of every homeowner in the Netherlands in what has been described as a “Yellow Pages for criminals’.
Privacy watchdog, AP called for the Agency to close the loophole immediately after it was discovered by journalists.
The Kadaster’s website includes a search facility that allows anyone to find the owner of a registered property.
Owners of professional accounts can also use the website to search by name and find individual addresses, for a payment. The service is primarily meant to be used by real estate professionals, such as estate agents and notaries.
The facility is supposed to be limited to companies registered with the Chamber of Commerce, but journalists were able to use another company’s details because applications are not vetted. The bill for the searches is then sent to the company’s business address.
Privacy experts said the security breach was open to abuse by criminals, stalkers, blackmailers and hackers, as well as people who sold personal details illegally.
Cyber-security expert, Dave Maasland said the Government was operating “Yellow Pages for criminals”.
“It’s typical of the Government that they don’t have a clue how dangerous this information can be,” Mr Maasland said.
“It’s incredibly naïve to think that this facility won’t be abused.”
The Land Registry said it had “significantly strengthened” its security systems since the breach was exposed. However, it is not the only Government Agency to be criticised for making it too easy for people with malicious intentions to target home addresses.
Derk Wiersum, a lawyer defending a key witness in the trial of alleged drugs baron, Ridouan Taghi, was shot dead on his doorstep by a gunman who searched the Chamber of Commerce’s database for his details.
Mr Wiersum was registered at his home address as an independent legal professional.
The Hague, 30 August 2023