Log in

Posts Tagged ‘security’

Aon Consulting reveals personal information of Delaware retirees, later notifies the affected

September 3rd, 2010

Aon Consulting Data Breach

In a major goof-up, Aon Consulting Inc. inadvertently revealed the Social Security numbers, dates of birth and genders of around 22,000 retirees from the state of Delaware, spokesman for the company said.

The data appeared on the consultant’s website between Aug 16 and Aug 20 in a vision benefits request for proposals that Aon had prepared for the state. The data did not contain any names and was removed as soon as it was discovered, according to the consultant’s Chicago-based parent, Aon Corp.

“The company is investigating the breach, but there have been no reports of any fraudulent activity,” an Aon spokesman said. He also added that potentially affected retirees were being notified of the breach and would receive free credit monitoring services for a year and access to a toll-free customer care center for additional assistance.

Delaware’s Office of Management & Budget and Delaware Department of Technology & Information, the Office of the Attorney General & the State Pension Office said in a combined statement that “we are overseeing the steps Aon is taking to support persons affected by this incident and prevent future incidents of this nature.”

Secure your organization with Alertsec

Alertsec Xpress is used in all organizations that have recognized the need to protect their information. Customers range from single-user sole traders and consultants to large multinational companies with offices around the globe. By using industry leading Check Point Full Disk Encryption (former Pointsec) software, Alertsec has created a web based encryption service that radically simplifies deployment and management of PC encryption

For security and technology observations, consider following us on Twitter.

Hewitt Associates Completes Acquisition of Leading U.S. Investment Advisory Firm, EnnisKnupp (eon.businesswire.com)
Security Briefing: August 31st (liquidmatrix.org)

No comments »

Posted in Data Protection, data breach

Tags: Aon Consulting Aon Corporation Chicago Corporation Delaware Hewitt Associates security United States

Increasing Laptop thefts, a major cause of worry

August 31st, 2010

Laptop thefts have been increasing this year, both on-campus & off-campus, according to a report from Information Technology.

The convenience and portability offered by laptops over desktop computers have made them popular among the masses and the thieves. “A laptop takes six seconds to grab,” said Harvard Townsend, chief information security officer. “Desktop machines are growing less common, Townsend said, and thieves realize this. Everyone should invest in a locking security cable,” he said. “Even at home, leave it kind of secured with that cable; it will eliminate opportunistic theft.”

A locking security cable locks the laptop with a heavy, immovable object, thus making it difficult for a thief to walk away with it. “The locks are available at any electronics retailer, including the K-State Student Union Computer Store. Laptops, whether they are in a room in a residence hall, apartment or house, are the easiest items to steal and have high value,” he said.

He also advised to record identification information about the laptop such as the serial number, hardware specifications, make and model and MAC (Media Access Control) address. The MAC address is an identification code, specific to every computer, both Mac and PC that can help the police track down a possible stolen device.

He also advises to back up data frequently so that incase of the theft, at least the invaluable data is not lost. A more secure way of protecting data is hard disk encryption.

Choose Alertsec’s Security Products right now

Alertsec is the frontrunner in offering hard disk encryption as a fully managed service. We provide protection for all information stored on laptops and PCs in an easy, convenient, and cost-effective way. Check out our convenient and cost-effective computer security software for Windows 2000, XP, Vista and 7.

Do You Know Where Your Laptops Are? (itexpertvoice.com)
Identity Theft Expert: 5 Ways To Stop Business Data Theft (prweb.com)

No comments »

Posted in laptop encryption, laptop theft

Tags: Computer security Desktop computer Hard disk drive Information Technology Media Access Control Personal computer security Theft

Laptop theft at University of Kentucky

August 27th, 2010

: Data Theft

A laptop containing the information of a newborn screening program has been stolen from the University. The University has started notifying 2,207 individuals whose personal data was contained in the laptop.

The laptop was password protected, but was not using any data encryption software. It was stored in a locked, private room. Data on the device included patient and mother names, medical record numbers, date of birth, diagnosis, and some Social Security numbers of mothers. The laptop was stolen between June 18 and June 21. The University has posted a public notice on its UKHealthCare web site on Aug. 19.

There is no indication from the university regarding the misuse or access of information contained in the laptop. The online public notice gives information on avoiding identity theft but does not indicate if affected individuals are being offered free credit and identity protection services. It is mentioned in the notice that the university is taking unspecified steps to improve security.

How to prevent data breach?

In cases of laptop theft, the insurance company may cover the hardware loss, but the data might be lost forever, or in worst cases might land in the wrong hands. Thus, data security software is required which will reduce the theft to merely that of hardware. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data.

Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Do You Know Where Your Laptops Are? (itexpertvoice.com)
Citrix targets laptop security with new virtualization software (infoworld.com)
Is a stolen PC effectively protected by a password? (ask.metafilter.com)

No comments »

Posted in laptop theft

Tags: data breach datasecurity Encryption identity theft laptop theft security Social Security number Theft

Royal Wolverhampton Hospitals NHS Trust looses patient records

August 26th, 2010

: Image via Wikipedia

Yet another NHS Trust has been found in breach of the Data Protection Act (DPA) after it lost sensitive patient records stored on an unencrypted CD.

Information Commissioner’s Office (ICO), the data security watchdog explained that the Royal Wolverhampton Hospitals NHS Trust lost a CD containing over 100 records from the Intensive Care Unit of New Cross Hospital’s Heart and Lung Unit.

The lost CD which was unencrypted with no password protection was later found at a bus stop near the hospital. “The fact that this information was several years old is of no consequence – patients’ personal data should always be handled in accordance with the Data Protection Act,” said Mick Gorrill, head of enforcement at the ICO. “I am pleased that the Trust has agreed to take remedial steps to ensure such an incident does not happen again,” he added.

The trust and ICO have been unable to determine how or why the CD was made. The Trust has agreed to sign a formal undertaking with the ICO to ensure similar incidents do not occur in the future. This will involve better staff training in data protection and ensuring patient charts released to consultants are signed for and chased up for return every week.

Though the matter has been put to rest now, security vendors have a different take on the incident altogether. Mark Fullbrook, UK and Ireland director at Cyber-Ark, argued that it is lucky to have escaped without a fine.

“What’s particularly disappointing in this case is that, with so many better-enabled devices and means of storing information, should this highly sensitive information have really been held and transported by CD?” he added. “The Trust couldn’t even explain how and why an unprotected CD with patient records was produced in the first place.”

Want to prevent breach?

Have you been affected by data breach? Do you think that your organization is susceptible to a potential security breach? For further information visit our website where you will learn about our encryption software and other security protection methods.

A trusted way to protect information stored on a PC or laptop is by using encryption. Alertsec Xpress offers full disk encryption and is therefore superior to other encryption methods when comparing security, performance, robustness and ease-of-use for both administrators and users. To find out more, see Tech Specs.

No comments »

Posted in laptop theft

Tags: Compact Disc data protection act Data Protection Act 1998 data security DVD Gramophone record Information Commissioners Office London New Cross Hospital NHS Trust Personal computer Phonograph Royal Wolverhampton Hospitals NHS Trust security

Patient Information stolen from Hospital

August 24th, 2010

Laptop

In two separate incidents, laptops containing patient information were stolen from University of Kentucky hospital, UK and from Cook County Health and Hospital.

Record of 2027 patients was stolen from the UK hospital between June 18 and June 21. The security breach has prompted the hospital authorities to issue a notification to the affected people. The information included patient names, dates of birth, diagnoses, mothers’ names and, in some cases, Social Security numbers of mothers in the Newborn Screening Program.

The stolen laptop was stored in a locked private office and was not having any computer protection software installed. The theft has been reported to the police and the investigation is going on.

Meanwhile, in another incident at Cook County Health and Hospital, a laptop was stolen on June 1 but it was reported only recently because of an ongoing internal investigation. The computer contained personal information of 7,000 Cook County health system patients.

Though, the investigation has determined the computer to be password protected, still the information within it may have been deleted. However, due to the uncertainty, officials have been reportedly notifying patients that their information may have been compromised. Guererro, meanwhile, says that he hasn’t seen evidence that any of the information has been accessed or distributed.

How Alertsec Xpress Would Have Helped

If you use a laptop encryption software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or sensitive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.