Skip to content
View in the app

A better way to browse. Learn more.

Thailand News and Discussion Forum | ASEANNOW

A full-screen app on your home screen with push notifications, badges and more.

To install this app on iOS and iPadOS
  1. Tap the Share icon in Safari
  2. Scroll the menu and tap Add to Home Screen.
  3. Tap Add in the top-right corner.
To install this app on Android
  1. Tap the 3-dot menu (⋮) in the top-right corner of the browser.
  2. Tap Add to Home screen or Install app.
  3. Confirm by tapping Install.

Your secrets are safe with us, says Phuket Immigration

Featured Replies

Your secrets are safe with us, says Phuket Immigration
The Phuket News

post-249866-0-76789400-1459340334_thumb.

The database used by Phuket Immigration is not linked to the one breached on Sunday, the Phuket Immigration Chief has assured.

PHUKET: -- The Chief of the Phuket Immigration Office in Phuket Town today said that private information of expats and tourists on the island remains safe and secure.

The assurance by Phuket Immigration Superintendent Col Sunchai Chokkajaykij follows the immigration data breach on Sunday (Mar 27) that saw personal details of thousands of foreign nationals living in Southern Thailand leaked online.

The breach revealed passport details of foreigners in the South, and even maps pinpointing where foreigners lived, with flags representing the foreigners’ nationalities. (See story here.)

“Our database is secure,” Col Sunchai told The Phuket News today.

Full Story: http://www.thephuketnews.com/your-secrets-are-safe-with-us-says-phuket-immigration-56840.php

tpn.jpg
-- Phuket News 2016-03-30

  • Replies 37
  • Views 5.1k
  • Created
  • Last Reply

Top Posters In This Topic

Posted Images

Is that the same immigration buro who used to recycle previously submitted paperwork for forms so you could see other peoples private data on the back? Nah, I must be dreaming.

When someone who isn't trained in IT security tells you that a database is secure, think how trusting you want to be. It's like the sales girl of a car dealership telling you that your engine is fine even though it makes funny noises.

^^^ Plus 1. Agree 100% Pretty much a group of DSs

About as tightly secure as a frog's ass under water! gigglem.gif

Our data base is secure.

He probably said it with a straight face.

Immigration offices recycle papers with other peoples details on the back.

So nothing is secure.

Is that the same immigration buro who used to recycle previously submitted paperwork for forms so you could see other peoples private data on the back? Nah, I must be dreaming.

When someone who isn't trained in IT security tells you that a database is secure, think how trusting you want to be. It's like the sales girl of a car dealership telling you that your engine is fine even though it makes funny noises.

When the data is in digital form, it's so much easier to analyse it and for some people to abuse it. The data was available for anybody who accessed the site.

That is the reason why this leakage of 2000+ persons data was so much more severe than some random pages, which one person receives. That also is bad itself, but in a different magnitude.

It's also fortunate, that not all of the data fields were used.

Well this is great news.

I for one am 100% reassured.

What a relief.

Edit to add - post above is spot on.

Them reusing pieces of paper with details on the reverse is bad enough. However, as the post above says, this data leak is a huge issue, and about as bad as it could get.

Just think about the amount of confidential information we leave in the hands of immigration every single day.

Anywhere else this would warrant a serious investigation but that aint going to happen here.

Edited by pinkpanther99

Is that the same immigration buro who used to recycle previously submitted paperwork for forms so you could see other peoples private data on the back? Nah, I must be dreaming.

When someone who isn't trained in IT security tells you that a database is secure, think how trusting you want to be. It's like the sales girl of a car dealership telling you that your engine is fine even though it makes funny noises.

When the data is in digital form, it's so much easier to analyse it and for some people to abuse it. The data was available for anybody who accessed the site.

That is the reason why this leakage of 2000+ persons data was so much more severe than some random pages, which one person receives. That also is bad itself, but in a different magnitude.

It's also fortunate, that not all of the data fields were used.

I agree that this leak was much more severe. Though my point was that the Phuket immigration office has previously shown a low respect for private data and handled things without care. And the person responsible for this is now claiming their IT infrastructure is secure even though he pretty sure is not very knowledgable of these things. I highly doubt they had an audit performed by a reputable computer security company.

System secure - rubbish ...

I agree that this leak was much more severe. Though my point was that the Phuket immigration office has previously shown a low respect for private data and handled things without care. And the person responsible for this is now claiming their IT infrastructure is secure even though he pretty sure is not very knowledgable of these things. I highly doubt they had an audit performed by a reputable computer security company.

This leak has nothing to do with the Phuket immigration officers. Absolutely nothing.

The responsibilities lay on the immigration officers, above the Phuket officers, who allowed a web developer to get this data, while it was unmasked to protect the people.

Then the unprofessional web dev company placed the data to the public internet. That was the mistake number two.

Mistake number three was that they got a DNS name, which others could understand.

Only after all of these moronic mistakes, which allowed the data to be accessed by anyone on the internet, the result of the mistakes was relieved to the public.

I saw the website, when it was released and there were hundreds of people from Phuket shown in the map.

oilinki: I know that specific leak isn't directly connected to the Phuket immigration office apart from like you said showing data from people who are living in Phuket. And they wouldn't tell if and how much data from Phuket residents was in that database.

But again my point is that the Phuket immigration office is claiming their system is secure while they have shown little competence when it comes to data security and don't have the skill to assess these systems. So how can they claim this?


“Our database is secure,” Col Sunchai told The Phuket News today.

Well, that's an open invitation for Anonymous to hack the database ...

Our data base is secure.

He probably said it with a straight face.

Immigration offices recycle papers with other peoples details on the back.

So nothing is secure.

With the low level of IT competence in the country they probably believe what they are told and repeat that publicly. Truth is they just have no idea

I do hope the 1482 copies of my passport they have there are all safe biggrin.png

cheesy.gifcheesy.gifcheesy.gifcheesy.gifcheesy.gif Ah Friday morning laughs hey. These guys have great futures in stand up comedy - shame retirement age just got raised 5 more years.

Trust us, we are Thai

He should have used the new speak slogan to finish his statement:

“Trust me we are Thai”

Do you ever wonder where the mountain of Immigration paperwork ends up? In 7 years just my stuff could fill a room.

Is there even a database? It's third world smoke and mirrors. There isn't even a database of driver's licenses. I doubt once you get that stamp on your passport that any paperwork could ever be found again.

“Our database is secure,” Col Sunchai

Sadly, I really think this man believes what he says.

But, is your database secure from ghosts?... blink.png

Edited by klauskunkel

Do you ever wonder where the mountain of Immigration paperwork ends up? In 7 years just my stuff could fill a room.

Is there even a database? It's third world smoke and mirrors. There isn't even a database of driver's licenses. I doubt once you get that stamp on your passport that any paperwork could ever be found again.

Rest assured it is in safe hands. Must be the scammers say it is

Do you ever wonder where the mountain of Immigration paperwork ends up? In 7 years just my stuff could fill a room.

Is there even a database? It's third world smoke and mirrors. There isn't even a database of driver's licenses. I doubt once you get that stamp on your passport that any paperwork could ever be found again.

Rest assured it is in safe hands. Must be the scammers say it is

facepalm.gif Trust me. We're Thai.

..........completely detached from reality..........

Time to carry a false passport to give to Thai authorities and hotels.

Do you ever wonder where the mountain of Immigration paperwork ends up? In 7 years just my stuff could fill a room.

Is there even a database? It's third world smoke and mirrors. There isn't even a database of driver's licenses. I doubt once you get that stamp on your passport that any paperwork could ever be found again.

I just renewed my visa and for the first time they took my picture to be stored on computer the same they do at the airport. Maybe a start to compile a database ?

This is the same Immigration office that now breaks the law ( again ) by charging 300 baht for a Letter of Residence?

( Unlike Patong that charges 1,000 !! )

Probably figures if he can't find the database nobody else could either.

Do you ever wonder where the mountain of Immigration paperwork ends up? In 7 years just my stuff could fill a room.

Is there even a database? It's third world smoke and mirrors. There isn't even a database of driver's licenses. I doubt once you get that stamp on your passport that any paperwork could ever be found again.

We all know where the photocopies end up ... recycled with forms on the back side.

Yes there is a database .... I can access limited information that our company entered into the database. Basically can search for our guests previous entry into the database.

Personally, I am impressed he could make this statement with a straight face. coffee1.gif

I agree that this leak was much more severe. Though my point was that the Phuket immigration office has previously shown a low respect for private data and handled things without care. And the person responsible for this is now claiming their IT infrastructure is secure even though he pretty sure is not very knowledgable of these things. I highly doubt they had an audit performed by a reputable computer security company.

This leak has nothing to do with the Phuket immigration officers. Absolutely nothing.

The responsibilities lay on the immigration officers, above the Phuket officers, who allowed a web developer to get this data, while it was unmasked to protect the people.

Then the unprofessional web dev company placed the data to the public internet. That was the mistake number two.

Mistake number three was that they got a DNS name, which others could understand.

Only after all of these moronic mistakes, which allowed the data to be accessed by anyone on the internet, the result of the mistakes was relieved to the public.

I saw the website, when it was released and there were hundreds of people from Phuket shown in the map.

I wonder if they ever thought of approaching a professional software company for a database?

Recently Browsing 0

  • No registered users viewing this page.

Account

Navigation

Search

Search

Configure browser push notifications

Chrome (Android)
  1. Tap the lock icon next to the address bar.
  2. Tap Permissions → Notifications.
  3. Adjust your preference.
Chrome (Desktop)
  1. Click the padlock icon in the address bar.
  2. Select Site settings.
  3. Find Notifications and adjust your preference.