Archive for October, 2013

CorporateCarOnline: 850,000 clients information at risk

October 4th, 2013

Hackers recently gained control of the database of CorporateCarOnline, a software provider for transportation reservations, exposing credit card data and other personal details of more than 850,000 clients.

The data breach exposed the information of thousands of celebrities and well-known figures that used the service to reserve a limousine or car service in recent years. The firm said the breach was likely the result of a targeted Adobe ColdFusion vulnerability. The breach exposed credit card details and notes left for the chauffeur about the victims’ habits. These are five known victims of the limousine service data breach.

Politicians were among the list of victims of the CorporateCarOnline breach. House Judiciary Committee Chairman Rep. John Conyers booked limo service in 2011 at Indianapolis International Airport. Sen. Mark Udall, chairman of the Senate Armed Services Committee’s Subcommittee on Strategic Forces, was among the victims. He was picked up at Boston’s Logan International Airport in 2009. The breach also included former Sens. Tom Daschle and John Breaux for trips they took in 2010.

Green Bay Packers quarterback Aaron Rogers was among the victims of the CorporateCarOnline hack. The superstar flew into Kalamazoo on a private plane in June 2010, according to the exposed data. Rogers was named Green Bay’s starting quarterback in 2008.

The database exposed the details of celebrity business mogul Donald Trump, who booked car service pickup using CorporateCarOnline for a visit to the Wynn Hotel in February 2007. “Must be new car, clean, and front seat must be clear,” a note associated with his file read. Trump was overseeing construction of his 64-story luxury hotel at the time.

Movie star Tom Hanks was provided transportation courtesy of CorporateCarOnline when he visited Chicago in June to see his son Chet Hanks graduate from Northwestern University.

NBA superstar LeBron James was among the high-profile victims of the CorporateCarOnline breach.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta

Laptop Stolen: 3,541 UCSF patients information at risk

October 2nd, 2013

UCSF Medical Center is recognized throughout the world for innovative patient care, advanced technology and pioneering research. It is a leading university dedicated to promoting health worldwide through advanced biomedical research, graduate-level education in the life sciences and health professions, and excellence in patient care.

A laptop belonging to an employee of UC San Francisco was stolen. Some patients were informed about this laptop theft as the laptop held patient’s personal information.

The security for the protection of health information at UCSF is of utmost importance. UCSF is taking best possible caution and concern, while there is still no evidence that there has been any attempt to access the information.

Letters have been sent informing the 3,541 patients whose information was there in the laptop. The California Department of Public Health and the California Attorney General have been alerted, and federal authorities are also being notified. A special phone line has been installed to address questions from patients who receive the notification letters.

As told by UCSF an unencrypted personal laptop was stolen from the locked vehicle of a UCSF Medical Center employee who works in the Division of Transplantation. When the employee came to know about the theft, he instantly informed San Francisco police, UCSF police and UCSF officials.

To find what information was in the laptop, UCSF immediately began an extensive technical analysis. The analysis revealed that the laptop contained personal and health information of some UCSF patients, including their name and medical record number. Social Security numbers were also involved for a small number of individuals.

Paper documents of 31 patients were also stolen, some of whose information was also on the laptop. Information in the paper documents included patient names, date of birth, medical record number and some health information.

Special phone line has been set up by UCSF to provide additional assistance to all the affected individuals.

UCSF is committed to maintaining the privacy of personal information and takes many precautions to secure that information. In response to the incident, UCSF is working to strengthen educational and operational processes to safeguard patients’ health information.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta