Whistleblowers have exposed critical security failures in the British GOV.UK One Login digital ID system, revealing vulnerabilities that compromise security and data protection.
These flaws, allegedly embedded since the system’s launch, pose significant risks, including potential data breaches.
A security expert from the Government Digital Service (GDS), part of the Department for Science, Innovation and Technology, first raised these concerns in 2022.
Despite reporting through proper channels, the whistleblower’s warnings were ignored, leaving the system’s serious vulnerabilities unaddressed and heightening the risk of exploitation.
Infowars.com reports: Another threat from more than half a million system vulnerabilities that they said were identified is identity theft. At this time, some three million people in the UK use the system to access 50 government services.
The security expert, whose identity has not been revealed in reports about the brewing scandal, asserted that thousands of vulnerabilities identified were rated as either critical or high.
The whistleblower’s account of the events suggests the authorities went for a slapdash approach to setting up the digital ID infrastructure, not only from the technical but also from the policy point of view.
Basic governance and risk management were not in place, according to the source, while the £330 ($436.70) million in funding arrived thanks to the business case that featured misleading claims regarding the quality of the scheme’s security.
And when the decision was made to outsource development to Romania, it came without GDS CEO’s approval, and without consultation with the National Cyber Security Center (NCSC).
The chief information security officer for GDS later carried out an investigation that reportedly confirmed the problems – only for the agency to decide not to mention this, when responding to a letter an MP sent to the Cabinet Office, asking about One Login’s security problems.
That MP appears to be the one the whistleblower previously contacted with their information, after waiting 18 months for the problems to be addressed by GDS.
But GDS did take some action – against the whistleblower.
Even though the MP was informed in line with the Public Interest Disclosure Act that should have protected the security expert, he faced disciplinary action.
At this time, the Department for Science, Innovation and Technology continues to claim that One Login is secure.
News Punch / ABC Flash Point News 2025.
Because they are organized crime. Allegedly. They use the cops to control it and protect and defend their monopolies and prevent undesirables from moving in on their markets. Its that simple. Allegedly
So stupid, the whole system is designed to kill you eventually. that is the security failure. Americans collectively are absolute dumb asses along with the Brits. We are next. Elon will come out with a digital system of ID and everyone will think it is so fantastic, because Elon designed it. Meanwhile all his rocket landings are Computer graphics, fake phony and false think about the weight of the fuel needed to be put on board the launch vehicle. Is that economical? The to make a controlled decent like that takes a shit load of energy. Just put parachutes on… Read more »