SEARCH RESULTS
 
Showing 1-10 of 198 records
 
Expand article

Oklahoma State University Parking Services server is compromised

The Article has images
2008-05-15 15:08:54 by Evan Francen in The Breach Blog
...Evan] What does the OSU Parking and Transit Services department need Social Security numbers for? Do you suppose information security personnel knew that sensitive personal information was stored on the server prior to this incident Upon discovering this intrusion, the IT Information Security Office immediately removed the server from the...
 
Tags: server, sensitive personal information, personal information, information, server administrators, server immediately, server prior, database server, confidential information
 
 
 
 
Expand article

Drama surrounds People's United Bank breach

The Article has images
2008-04-08 12:47:21 by Evan Francen in The Breach Blog
...Evan] People's Bank would have had no idea that confidential documents were taken from dumpsters had Mr. Hastings not approached them. How long could the practice of discarding confidential information in the garbage have gone on before someone else noticed? How long has this practice been accepted, and is it still occurring The bank got a...
 
Tags: bank, financial information, information, confidential information, people, bank deposit, hastings, james hastings dove, bank set
 
 
 
 
Expand article

Stolen account firm laptop contained personal information

The Article has images
2008-04-28 09:50:55 by Evan Francen in The Breach Blog
...Evan] We see too many breaches occurring through contractor/vendor relationships Although, there have been no known reports of identity theft from any of the 482 employees notified, the computer has not been found and, according to a letter from the firm, thieves sometimes hold victims information for later use Evan] The fact that thieves DO...
 
Tags: information, clients personal information, clients, personal information, specific information, store confidential information, client information, confidential information, personal information inside
 
 
 
 
Expand article

Stolen SunGard laptop affects at least 10 post-secondary schools

The Article has images
2008-04-21 14:49:39 by Evan Francen in The Breach Blog
...Evan] All of "the needs" except one critical one... SECURITY Victims Students and a limited number of employees Number Affected Unknown, but at least 23702 Types of Data Personal information including names, Social Security numbers and financial aid information Breach Description A laptop belonging to a consultant at SunGard Higher...
 
Tags: information, personal information, store confidential information, university, university system, data custodians apply, data custodians, information security governance, sungard
 
 
 
 
Expand article

A breach that hits home with 2008 presidential candidates

The Article has images
2008-03-22 13:16:50 by Evan Francen in The Breach Blog
...Evan] The Inspector General job is still vacant. Would you want this job? If so, you may have to call them. I don't see a job description or a posting on Monster.com State Department spokesman Sean McCormack said the violations of McCain and Clinton's passport files were not discovered until Friday, after officials were made aware of the...
 
Tags: stanley subcontractor employees, subcontractor employees, subcontractor, confidential information, information, information security, stanley, personal information, employees
 
 
 
 
Expand article

Unauthorized access to the Stryker Corporation VPN

The Article has images
2008-04-17 12:45:57 by Evan Francen in The Breach Blog
...Evan] Sheesh. I can only imagine what damage could have been done with (essentially) local network access Stryker immediately disabled the domain administrator service account through which the unauthorized user had accessed the VPN Evan] This and subsequent statements support the implication that a domain (Windows) administrator level...
 
Tags: stryker, stryker corporation, stryker suspects, stryker immediately, immediately, stryker intends, stryker servers, servers, evan user
 
 
 
 
Expand article

Health care practices and UCSF patient records exposed

The Article has images
2008-05-07 16:10:17 by Evan Francen in The Breach Blog
...Evan] Purloined is a funny word This is a large and very significant data breach," said Pam Dixon, executive director of the World Privacy Forum To commit medical identity theft, all you need is a patient's name, address and the name of the hospital. If you have a doctor's name and the medical department where the patient was being treated,...
 
Tags: ucsf, ucsf patient, ucsf patients, patients, patient, sensitive information, information, patient information, ucsf medical center
 
 
 
 
Expand article

205 University of Wisconsin employees exposed

The Article has images
2008-01-21 14:44:21 by Evan Francen in The Breach Blog
...Evan] One year before being noticed is too long. Is the DoIT site regularly tested for information security vulnerabilities? It should Rust said the Web-based database for DoIT employees was intended to keep track of sales transactions for statistical purposes Evan] I wonder what personally identifiable information serves for statistical...
 
Tags: information, personal information, information security vulnerabilities, social, include social security, security, identifiable information serves, information security personnel, computer shop
 
 
 
 
Expand article

Former LendingTree employees sold access to customer information

The Article has images
2008-04-23 13:08:37 by Evan Francen in The Breach Blog
...Evan] From Rob Douglas, editor of InsideIDTheft.info "Given that data was accessed from 2006 to early 2008, it can be inferred that passwords used by former employees remained operational for months or even years after their employment was terminated, generally considered poor security practice Recently, LendingTree learned that several...
 
Tags: information, lendingtree, necessarily fault lendingtree, fault lendingtree, employment information, credit card information, lendingtree faqs, information security personnel, security
 
 
 
 
Expand article

40,000 BlueCross BlueShield members notified of lost laptop

The Article has images
2008-03-11 15:31:27 by Evan Francen in The Breach Blog
...Evan] Not sure where confidential information is? Sad, common and true Based on the companys investigation, the potential information includes names, dates of birth, Social Security numbers, addresses, employer group names, and health insurance identifier numbers there was no health or medical claims information involved Evan] I think a...
 
Tags: sensitive personal information, personal information, information, confidential information, laptop, information owners, breach description, breach, security breach