Log in

Posts Tagged ‘identity theft’

Laptop theft at University of Kentucky

August 27th, 2010

: Data Theft

A laptop containing the information of a newborn screening program has been stolen from the University. The University has started notifying 2,207 individuals whose personal data was contained in the laptop.

The laptop was password protected, but was not using any data encryption software. It was stored in a locked, private room. Data on the device included patient and mother names, medical record numbers, date of birth, diagnosis, and some Social Security numbers of mothers. The laptop was stolen between June 18 and June 21. The University has posted a public notice on its UKHealthCare web site on Aug. 19.

There is no indication from the university regarding the misuse or access of information contained in the laptop. The online public notice gives information on avoiding identity theft but does not indicate if affected individuals are being offered free credit and identity protection services. It is mentioned in the notice that the university is taking unspecified steps to improve security.

How to prevent data breach?

In cases of laptop theft, the insurance company may cover the hardware loss, but the data might be lost forever, or in worst cases might land in the wrong hands. Thus, data security software is required which will reduce the theft to merely that of hardware. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data.

Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Do You Know Where Your Laptops Are? (itexpertvoice.com)
Citrix targets laptop security with new virtualization software (infoworld.com)
Is a stolen PC effectively protected by a password? (ask.metafilter.com)

No comments »

Posted in laptop theft

Tags: data breach datasecurity Encryption identity theft laptop theft security Social Security number Theft

Laptop stolen from UConn, West Hartford campus

August 23rd, 2010

Laptop Theft Connecticut

A laptop containing the names and Social Security numbers of more than 10000 Uconn applicants was stolen from their West Hartford campus. The laptop was kept in the storage cabinet of their Information Technology Department.

UConn officials said they have started investigating the theft which was discovered on 3^rd August. The university is in the process of contacting; in writing, everyone whose name was on the computer, and offering those individuals credit monitoring coverage for a period of two years at the University’s expense. Data from 2004 up to 2010 was stored on the laptop.

Meanwhile, the UConn police is continuing their investigation. “We deeply regret this incident. The University takes security of personal data seriously and is continuing its investigation to determine whether any University policies were not followed.” says Jason Pufahl, interim chief information security officer at the University. “The University will take corrective steps and, if warranted, disciplinary action”, he added.

Also, the Connecticut Attorney General’s office is also investigating the incident. “My office is investigating to determine the cause of this security breach – putting more than 10,000 applicants at risk for identity theft,” Richard Blumenthal said. “While there has been no evidence of financial fraud at this time, misuse of private financial information remains a threat and must be prevented. I am pleased that UConn officials have pledged two years of identity theft protection for individuals. Our investigation will also seek to ensure that measures are immediately implemented to prevent future breaches.”

Our Take: Possibly, the use of Computer protection software or Laptop encryption software like Alertsec Express would have prevented all this chaos. The theft would have simply been reduced to an insurance matter and the cost of laptop.

This Week in Leaks (Aug. 20, 2010) (palisadesystems.com)
Preventing Identity Theft (creditscore.net)
Connecticut to Probe WellPoint Security Breach (businessweek.com)

No comments »

Posted in Uncategorized

Tags: Attorney general Crime identity theft Richard Blumenthal security Social Security number Theft University of Connecticut

Laptop of Portland Psychologist stolen, 4000 patients face possible identity breach

August 17th, 2010

Dr. David Gostnell, a Portland psychologist is alerting 4,000 patients after his laptop, which contained personal health information, was stolen from his car on July 7.

The laptop contained clinical evaluations, with patients’ full names, Social Security Numbers & diagnosis. Gostnell’s briefcase was taken as well, but was recovered from a nearby garbage bin. It contained individual evaluation records. The theft was reported to the police the next day.

Although the laptop was password protected but he was not using any computer protection software. Also, there was a disc in the CD drive that contained a partial backup of the hard drive, Gostnell said. He also added, the breach doesn’t involve any patients he evaluated at Oregon Health and Science University Hospital. Patients at his Northeast Portland practice, however, should call 1-877-461-7657.

He doubts if the laptop was stolen for the purpose of identity theft and believes that till now none of the personal information has been misused or leaked.

According to OHSU’s website, David Gostnell, Ph.D. is a clinical assistant professor in the Departments of Neurological Surgery and Medical Psychology, consulting with neurosurgeons and other physicians in chronic pain conditions and performing pre-surgical psychological assessments.

At OHSU and in his private practice in Northeast Portland, he assesses and treats patients with neurological disorders. He also acts as a consultant with Kaiser Permanente.

How Alertsec Xpress Would Have Helped

If you use a laptop encryption software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

No comments »

Posted in Uncategorized

Tags: Crime David Gostnell Hardware Health identity theft Portland Oregon Social Security number Theft

Laptop stolen from Philadelphia hospital, personal data of 21000 patients compromised

August 9th, 2010

Thomas Jefferson University Hospital in Philadelphia became the latest victim of laptop theft on June 14. The laptop contained personal information of approximately 21000 patients like their names, birth dates, insurance information and Social Security numbers. Those people who received inpatient care between March ’08 and November ’08 are covered under this theft.

The hospital has hired a risk consulting company to assess the amount of damage and has also started the process of notifying the people whose information has been compromised. An identity theft protection service has been offered to all such people.

“On behalf of everyone at Jefferson Hospitals, please accept our apologies and know that we are committed to providing assistance to the affected patients,” Jefferson Hospitals president and CEO Thomas Lewis said in a statement. “Jefferson Hospitals has extensive internal policies reflecting our commitment to the appropriate use of personal health information and employees receive training on these policies annually.”

A hospital employee violated policy by copying data from the hospital’s computer system to a laptop. The employee will be subject to an unspecified disciplinary action. Though the laptop was password protected but the data was not encrypted.

This incident is just the latest in a string of data breaches and device thefts that have plagued hospitals and health-care providers this year.

How to prevent data breach?

In cases of laptop theft, the insurance company may cover the hardware loss, but the data might be lost forever, or in worst cases might land in the wrong hands. Thus, data security software is required which will reduce the theft to merely that of hardware. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data.

Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

This Week in Leaks (Aug. 6, 2010) (palisadesystems.com)
Computer with patient data stolen from Jefferson (philly.com)
Identity Theft in Laptops (socyberty.com)

No comments »

Posted in Uncategorized

Tags: data breach Health care identity theft Philadelphia Social Security number Thomas Jefferson Thomas Jefferson University Thomas Jefferson University Hospital

University of Hawaii Data Breach

July 19th, 2010

: Image by Getty Images via @daylife

Following-up with our last post on Northwestern Iowa University data breach, another data breach incident has happened at the University of Hawaii in Manoa.

The computer security breach is believed to have impacted about 53,000 people causing exposure of their personal information which includes over 40,000 social security numbers and over 200 credit card numbers.Apparently the information was stored on on a computer server used by the Manoa campus Parking Office.

Breach Discovery

The damage was discovered during an audit exercise conducted on 15th June 2010. As per the officials the breach had happened on May 30, 2010. Once the breach was known, the sever was isolated from the rest of the network and an investigation was started which included notification of the Honolulu Police Department and the FBI. In addition, a forensic computer expert was hired to do further investigation.

About the data

As stated above, the database contained Social security numbers and credit card information. In addition, it also had records for faculty, staff, and students who were at the institution during 1998. Business information of people had engaged with the parking office such as purchasing parking permits or having a car towed was also exposed.

The Impact of the Breach

So far there is no evidence that the personal information inside the server has either been used or accessed. However, the people who have been potentially affected will be monitoring their their financial information and taking measures against identity theft. They have been encouraged to obtain credit reports and review credit and bank information statements regularly for any unusual or suspicious activities. A helpline has been setup by the university to answer questions via the phone and through email. The telephone hotline is at #956-6000 and email is at www.hawaii.edu/idalert/.

What the University Says

The university has issued a press release which says, “To protect personal information from further unauthorized access, Social Security numbers are no longer used for parking transactions and are being purged from all current and historic Parking Office databases,” the university said in a news release. “Additional security measures that are being taken include strengthening internal automated network monitoring practices, and performing extensive evaluations of systems to identify other potential security risks”.

The university spokesman Gregg Takayama said, “A computer hacker introduced a virus into a UH Manoa computer server containing parking office information and this enabled access to data on about 53,000 people”. “As part of our investigation we do know that a computer site in China was involved but that doesn’t necessarily mean that the hacker originated in China,” said Takayama.

What should affected individuals know and do?

Khon2.com has published a detailed set of FAQs which addresses most of the queries related to this incident. One of the queries also provides tips for affected individuals:

Carefully monitor your financial information and take protective measures against identity theft, which include:

Obtaining and carefully reviewing credit reports. Free credit reports from all three credit agencies may be obtained by calling 877-322-8228.
Reviewing bank and credit card statements regularly, and looking for unusual or suspicious activities.
Contacting appropriate financial institutions immediately upon noticing any irregularity in a credit report or account.

Are you suffering from the breach?

Have you been affected by data breach? Do you think that your organization is susceptible to a potential security breach? For further information visit our website where you will learn about our encryption software and other security protection methods.

If you use a data security software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.