Should it be confirmed that the discs have effectively been stolen rather than lost, it would highlight the fact that it is much less of a gamble for criminals to steal such bounty rather than risk their lives in a real bank heist.
The discs are password protected but this doesn't mean much and by the time of the announcement yesterday, the passwords would have already been cracked if criminal groups got hold of the discs.
At market prices (The Washington Post mentions USD 14 each), the two discs would be worth tens of millions of pounds.
Barring perhaps the TK Maxx Credit card Fraud where credit card details of nearly 46 million people were stolen by hackers, this is possibly the biggest ID-related blunder ever.
This raises even more questions over the way the current government plans to manage the ID Card project as well as the centralisation of identity databases which are honey pots for criminals and hackers.
Unlike credit cards though, people at risk cannot change the data contained on the disc and those could be use for potentially more damaging fraud like remortgaging a house.
For example, your name or surname, address, bank details or NI number which often are untouched during a person's working life.
It is not the first time that CD containing personal details are being lost in the post; as recently as in October, data on 15,000 pension policy holders were lost ... by TNT; perhaps it was a test run at that time.