The story from the UK about the sale on eBay of a computer that contained information on several million bank customers (BBC News) raises issues about the security procedures of external service providers.

Apparently the computer was used by a data processing and archiving company which did credit card work for financial institutions.

The information is said to include account details and in some cases customers’ signatures, mobile phone numbers and mothers’ maiden names for 3 organisations.