A media story out of Australian is a good reminder that even the most security conscious individual is still only as secure as the web host or service provider your information is hosted with. The personal details of millions of Vodafone customers, including their names, home addresses, driver's license numbers and credit card details, have been publicly available on the Internet in what is being described as an ''unbelievable'' lapse in security by the mobile phone giant.

It is being reported that personal details, call logs, and records were accessible from any computer, with a password and username because they are kept on an Internet site rather than on Vodafone's internal system. People have apparently obtained logins to check their spouses' communications.

Vodafone retailers and dealers are given a user name and password for the system. That access is shared by staff and every three months it is changed. Other mobile dealers who sell Vodafone products also get full access to the database. Vodafone dealers have revealed that they are frequently asked to do ''favors'' and to pass on their login details. Anyone with full access can look up a customer's bills and make changes to accounts. Limited access allows searching by name, which takes much longer and is more involved but can be just as effective when done correctly. '

Vodafone has ordered an immediate investigation and review of security procedures. ''Customer information is accessed through a secure web portal, accessible to authorized employees and dealers via a secure login and password. Any unauthorized access to the portal will be taken very seriously, and would constitute a breach of employment or dealer agreement and possibly a criminal offense. We will be conducting a thorough investigation of the matter with our internal security experts and will refer the matter to the Australian Federal Police if appropriate. All passwords would be reset, and training and other procedures would be reviewed.”a Vodafone spokesperson said.