SecurityRatty: tag: evan

Drama surrounds People's United Bank breach

2008-04-08 12:47:21 by Evan Francen in The Breach Blog

...Evan] People's Bank would have had no idea that confidential documents were taken from dumpsters had Mr. Hastings not approached them. How long could the practice of discarding confidential information in the garbage have gone on before someone else noticed? How long has this practice been accepted, and is it still occurring The bank got a...

Tags: bank, financial information, information, confidential information, people, bank deposit, hastings, james hastings dove, bank set

Stolen account firm laptop contained personal information

2008-04-28 09:50:55 by Evan Francen in The Breach Blog

...Evan] We see too many breaches occurring through contractor/vendor relationships Although, there have been no known reports of identity theft from any of the 482 employees notified, the computer has not been found and, according to a letter from the firm, thieves sometimes hold victims information for later use Evan] The fact that thieves DO...

Tags: information, clients personal information, clients, personal information, specific information, store confidential information, client information, confidential information, personal information inside

Stolen SunGard laptop affects at least 10 post-secondary schools

2008-04-21 14:49:39 by Evan Francen in The Breach Blog

...Evan] All of "the needs" except one critical one... SECURITY Victims Students and a limited number of employees Number Affected Unknown, but at least 23702 Types of Data Personal information including names, Social Security numbers and financial aid information Breach Description A laptop belonging to a consultant at SunGard Higher...

Tags: information, personal information, store confidential information, university, university system, data custodians apply, data custodians, information security governance, sungard

A breach that hits home with 2008 presidential candidates

2008-03-22 13:16:50 by Evan Francen in The Breach Blog

...Evan] The Inspector General job is still vacant. Would you want this job? If so, you may have to call them. I don't see a job description or a posting on Monster.com State Department spokesman Sean McCormack said the violations of McCain and Clinton's passport files were not discovered until Friday, after officials were made aware of the...

Tags: stanley subcontractor employees, subcontractor employees, subcontractor, confidential information, information, information security, stanley, personal information, employees

Unauthorized access to the Stryker Corporation VPN

2008-04-17 12:45:57 by Evan Francen in The Breach Blog

...Evan] Sheesh. I can only imagine what damage could have been done with (essentially) local network access Stryker immediately disabled the domain administrator service account through which the unauthorized user had accessed the VPN Evan] This and subsequent statements support the implication that a domain (Windows) administrator level...

Tags: stryker, stryker corporation, stryker suspects, stryker immediately, immediately, stryker intends, stryker servers, servers, evan user

Health care practices and UCSF patient records exposed

2008-05-07 16:10:17 by Evan Francen in The Breach Blog

...Evan] Purloined is a funny word This is a large and very significant data breach," said Pam Dixon, executive director of the World Privacy Forum To commit medical identity theft, all you need is a patient's name, address and the name of the hospital. If you have a doctor's name and the medical department where the patient was being treated,...

Tags: ucsf, ucsf patient, ucsf patients, patients, patient, sensitive information, information, patient information, ucsf medical center

1st Source Bank reissues all debit cards in response to breach

2008-06-05 09:09:56 by Evan Francen in The Breach Blog

...Evan] I wonder how many debit cards are in its "entire portfolio". I'm guessing that the number is in the tens of thousands a hacker broke into the system from the outside and compromised the system No fraud has been discovered as a result of the intrusion The $4.5-billion-asset bank with 79 branches in northern Indiana and southern...

Tags: 1st source, bank, 1st source bank, evan 1st source, server, bank server, bank officials, breach, bank employs

Laptop stolen from the home of a BearingPoint employee

2008-06-19 15:38:38 by Evan Francen in The Breach Blog

...Evan] As demonstrated on their web site. The number "8" followed by "The number of years in a row that identity theft has been the #1 internet crime To that end, we have implemented safeguards for the information Evan] OK, I am following so far Even the most rigorous safeguards, however, can not guarantee protection against criminal...

Tags: sensitive personal information, personal information, information, bearingpoint, store confidential information, confidential information, laptop, information security, independent contractors

"many of Colt's clients" affected by breach, CNET included

2008-06-25 11:25:20 by Evan Francen in The Breach Blog

...Evan] Uh Oh!, this is starting to read like and smell like the ASI breach reported in February The breach occurred on Memorial Day, Monday, May 26, 2008, between approximately 4:30 p.m. and 5:00 p.m. PST, when someone broke into Colt Express's office at 2125 Oak Grove Road, Suite 210, Walnut Creek, California, 94598 Certain computer...

Tags: information, personal information, information security, confidential information, protect information, breach, sensitive information, information security requirements, colt

205 University of Wisconsin employees exposed

2008-01-21 14:44:21 by Evan Francen in The Breach Blog

...Evan] One year before being noticed is too long. Is the DoIT site regularly tested for information security vulnerabilities? It should Rust said the Web-based database for DoIT employees was intended to keep track of sales transactions for statistical purposes Evan] I wonder what personally identifiable information serves for statistical...

Tags: information, personal information, information security vulnerabilities, social, include social security, security, identifiable information serves, information security personnel, computer shop

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo