AOL has announced steps it is taking to prevent another security breach like one in which subscriber search query results were recently posted online.
The company also accepted the resignation of its chief technology officer. Maureen Govern "has decided to leave AOL effective immediately," said Jon Miller, president of AOL, in an email message to employees that was provided to the IDG News Service. Govern, who was named CTO in September 2005, oversaw the research division responsible for the data release. In addition, a researcher and a manager in the research area were fired, according to an AOL spokesman who declined to be named.
The web portal and internet service provider has come under criticism from internet privacy watchdogs for disclosing data on more than 2 million search queries made by 650,000 AOL subscribers between 1 March and 31 May. AOL researchers posted the data online even though it was intended only for use by other AOL researchers. No personally identifiable information about subscribers was revealed. AOL has since removed the data from the web.
Miller said AOL will also take the following steps:
- impose additional restrictions on access to databases of subscriber information, regardless whether that data contains information identifying specific people;
- develop new systems to ensure that sensitive information is not included in research databases;
- train employees at all levels about the need for sensitivity to privacy issues.
The breach occurred "because some employees did not exercise good judgment or review their proposal with our privacy team," Miller told employees.
Miller also announced that Govern’s predecessor, John McKinley, will return to the position of CTO. He was planning to leave the company at the end of the year.