Customer

8.8 To 18.8M Individuals affected by data breach

February 22nd, 2015

The recent revelation by Anthem was the continuation of previous data breach which was caused by hacking incident. Anthem, Inc spokesperson stated that anywhere from 8.8 million to 18.8 million non-customers could be impacted. The affected information included names, birthdates, Social Security numbers, addresses, phone numbers, email addresses and employment data that may have included income information.

Credit card information, bank account numbers or other financial data were not affected. Anthem is a member of an independently run Blue Cross Blue Shield (BCBS) national network and runs the BCBS healthcare plans in 14 states. Other states’ plans are independently run. Approximately 105 million individuals have coverage under the BCBS license in 37 different companies.

The Anthem spokesperson said that the facility’s investigation is in process, but it estimated that tens of millions of personal records were stolen during the breach. Federal and State investigations are also conducted along with internal investigation. Anthem will start sending notification to the affected individuals. As per the report, the Anthem’s drive was not encrypted which aggregated the breach.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Stolen laptop may lead to data breach

February 7th, 2015

Private behavioral and mental health non-profit organization may suffer data breach after it found out that several laptops were stolen from its Noblesville location, Indiana. Organization believed that laptops were not stolen for the information. The stolen laptops “may have resulted in the limited disclosure of personal information” for both employees and patients.

Affected information includes names, addresses, and Social Security numbers for employees and a few clients. Moreover, some clients’ medical record numbers and personal health information may have been on the devices. However, electronic medical records were not on the laptops. Aspire mailed notifications to approximately 45,000 individuals which included 1,500 Social Security number.

Aspire added that it is offering identity protection services to members whose information was potentially exposed.

“Our organization is committed to maintaining the privacy and security of the personal information in our control, and we sincerely regret this incident occurred,” Aspire President and CEO Rich DeHaven said. “We have taken steps to enhance our security, including upgrading our alarm and security systems. We remain committed to continually improving our IT and physical security to further protect our data and our clients.”

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

South Carolina Insurance data stolen: Notofication sent after two months

January 9th, 2014

State mandated health insurance program in S.C. notified customers about laptop theft which has occurred two months earlier according to website, GoUpstate.com. The laptop belonged to one of the company’s auditor and reportedly it was password protected, the laptop was stolen from individual’s car. Information about stolen laptop was notified to the police next day and the SC Health Insurance Pool.

SC Health Insurance Pool, run by the SC Department of Insurance had hired Columbia accounting firm DeLoach & Williamson to review their claims and payments. The laptop had important personal information like patient names, dates of service, provider identification numbers, and Social Security numbers as per The Post and Courier. In total 3,432 customers were affected who earlier used the program in 2011 and 2012.

Personal information may lead to data theft due to possible violation of company policy as per the Attorneys for DeLoach. It is prohibited to leave laptop in vehicle unattended which leads to theft. The pool mentioned that it does not allow employees to take customer information outside company offices.

Despite theft knowledge within week, customers were not informed. All the affected customers were mailed about the incident.

“First, we had to determine what type of information was included,” Cynthia Hutto of Nelson Mullins Riley & Scarborough said. Apparently delay was caused due to the process of information collection for mailing address and setting up free credit monitoring. Cost for same is covered for one year by the auditor and respective mailing notification is sent for same.

With the present scenario it is advisable to have security software which prevents major data loss. With the possible penalty of breach and potential loss of customers trust more stringent security measures has to be applied. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.

Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.

Enhanced by Zemanta

1,100 Pediatric Patients’ Health Information breached after stolen laptop

January 7th, 2014

New Jersey’s Barnabas Health recently informed about an unencrypted laptop was stolen on September 24, 2013 from the Barnabas Health Medical Group’s Pediatric Specialty Center which is located in Livingston, N.J. Although the theft was discovered on the same day and police were notified for it but the laptop has not been recovered. Letters were sent to the affected customers.

The stolen laptop contained information which was attached to pulmonary function testing (PFT) equipment information on its hard drive. There is a possibility of data theft of patients’ names, birthdates, testing dates, testing results, physicians’ names, and other demographic information. More information like addresses, financial information or insurance or other identification numbers was not available on it.  Company has informed customers to report any unauthorized activity related to data breach.

Despite the laptop theft, any violation of personal information has not been reported to the company. Company stated availability of printout of PFT forms of the patients ensuring continuity of care and accessibility by the treating physician.

“Patients with questions relating to this incident should call 800-583-1191 between the hours of 9:00 AM and 5:00 PM. Barnabas Health Medical Group sincerely regrets this unfortunate incident and considers the security of patient information to be of utmost importance.” Barnabas Health mentioned in the notification to the customers.

Many measures have been added up like review of applicable safeguards and use against unencrypted laptops to avoid such incidents. Retraining of various patient privacy and security obligations and policies took place for employees of the centre.

Organizations can use encryption software like Alertsec Xpress to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta

Data Theft hits Vodafone customers

September 13th, 2013

Mobile phone and broadband provider Vodafone Deutschland was attacked by a large-scale data theft affecting the personal details of their two million German customers.

Spokesman Alexander Leinhos said that a computer specialist who worked at Vodafone was accused of this data theft incident.

Vodafone Germany said in a statement that the unnamed suspect launched a “criminal attack” on one of the company’s servers to steal the customers’ names, addresses; dates of birth, bank codes and account numbers.

Alexander said the company was advising its customers to take special care while providing their details to access its services, he claimed it was hardly possible for the attacker to access the bank accounts of affected customers.

The company referred to accused as a “hacker” who had knowledge of Vodafone Germany’s IT systems, a UK technology magazine has labeled the accused as a contract IT worker of Vodafone.

German media reports stated that the suspect worked at Vodafone as a system administrator for an external service provider, which employed him full-time.

In particular, added Die Welt, a Vodafone Germany spokesman – Alexander Leinhose cited security checks that all “external employees of service providers” must pass, which the accused reportedly did.

Vodafone stated on its website that there was a raid conducted at the house of accused, he was cooperating with the authority. They also asked him for the data theft to remain under wraps so their investigation would not be compromised.

The Mobile phone and broadband provider added: “The security of data has highest priority for Vodafone. We shall take all necessary steps to further improve the security of our systems and to protect against future criminal attacks”.

Vodafone has more than 32 million mobile phone customers and more than three million broadband subscribers in Germany. It is a wholly owned subsidiary of Vodafone Group.

Get your personal as well as office laptops encrypted by Alertsec

Unencrypted laptops present a major risk of data loss. 80% of information theft is due to lost or stolen laptops and other equipment. About 50% of network intrusions are performed with credentials gathered from lost or stolen devices. The penalties for a data breach are severe not only in terms of the monetary fines imposed on the organization, but also the potential loss of trust from customers and suppliers. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.

Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.

Enhanced by Zemanta

UK estate agency Foxtons hacked

August 23rd, 2013

Famous UK estate agency Foxtons had to reset passwords of all its customers as a precaution, as it appeared hackers lifted thousands of clients’ usernames and passwords from the systems.

Hackers claimed to have leaked online user names, email addresses and passwords of nearly 10,000 Foxtons’ customers, resulting in a big data breach incident.

All the details were quickly leaked but assumptions were that the copies were made before this happened. The hackers failed to pull out credit card or bank details but they still gathered enough information of customers.

Writing to the affected customers, Foxtons said it was investigating the purported hack. In the meantime it had reset user passwords as a precaution.

Foxtons have been able to download the list of usernames and passwords that were posted and are currently running checks to determine its accuracy. They also assured all its customers that any sensitive information that they may have provided in relation to payments made through Foxtons is completely secure with the external payment providers.

However, immediate precautions had been taken to safeguard the accounts and an investigation was in progress. The affected customers will be contacted directly contacted by Foxtons’ team.

Foxton had also asked its customers to create new password once they login.

When Foxtons’ representative was asked whether the company salted stored passwords, a basic security practice, they declined to comment on any aspects of the incident and said that it may decide to issue a statement at some point.

“Tighter regulation might be needed to stem the growing list of data breaches. The recent spate of high-profile data breaches, such as this alleged attack on Foxtons, is evidence that organisations are either not taking cyber security seriously or are bewildered by the problem. Regulation in this case is a necessity to alter corporate behaviour.” said Ross Parsell, director of cyber security at Thales UK.

Alertsec strengthens security

Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption by using industry leading Check Point Full Disk Encryption (former Pointsec) software.

Organizations, especially corporate giants, have to have an information security policy in place that proves they have taken necessary steps and measures to safeguard the information they gathered. If these policies are not adhered to, the regulators may prosecute.

Alertsec Xpress is used by organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to multinational companies with a large number of offices around the globe. Over 4 million users worldwide use Alertsec Xpress’s Check Point Full Disk Encryption.

Enhanced by Zemanta