BreachExchange mailing list archives
Re: Wis. mailing sent with personal info
From: Adam Shostack <adam () homeport org>
Date: Thu, 10 Jan 2008 15:57:14 -0500
Appalled experts elsewhere are asking why Wisconsin gave SSNs to EDS as part of mailing informational brochures. You don't have to select * from row. You could have selected name, address from row. Aam On Thu, Jan 10, 2008 at 01:46:57PM -0600, Henry Brown wrote: | interesting followup: | | From ComputerWorld | http://tinyurl.com/2j6v9x | | "Appalled" officials at the Wisconsin State Department of Health and | Family Services (DHFS) are asking Electronic Data Systems Corp. to | explain why it allowed Social Security numbers to be printed on the | address labels of information brochures recently sent to more than | 260,000 recipients of state health care services. | | The state agency is also asking Plano, Texas-based EDS to cover the cost | of mailing letters to all of the affected individuals informing them of | the error as well as the costs of providing credit-monitoring services | for a year. | | [...] | | | > http://www.businessweek.com/ap/financialnews/D8U201M02.htm | > | > Social Security numbers were printed on about 260,000 informational | > brochures sent by a vendor hired by the state to recipients of SeniorCare | > and other state programs. | > | > The gaffe is the second time in 13 months that mailings including the | > recipients' Social Security numbers were sent from state departments. In | > December 2006, the state Department of Revenue mailed 171,000 tax booklets | > with the number printed on the label. | > | > The latest mailing was first reported on Tuesday by WKOW-TV. | > | > The state Department of Health and Family Services issued a statement | > saying the mistake was the fault of EDS, a private vendor for state | > Medicaid services. Karen Timberlake, deputy secretary of the state | > department, said the mailing went to about 260,000 Medicaid, SeniorCare, | > and BadgerCare members. | > | > [...] | > _______________________________________________ | > Dataloss Mailing List (dataloss () attrition org) | > http://attrition.org/dataloss | > | > Tenable Network Security offers data leakage and compliance monitoring | > solutions for large and small networks. Scan your network and monitor your | > traffic to find the data needing protection before it leaks out! | > http://www.tenablesecurity.com/products/compliance.shtml | > | > | > | > | | _______________________________________________ | Dataloss Mailing List (dataloss () attrition org) | http://attrition.org/dataloss | | Tenable Network Security offers data leakage and compliance monitoring | solutions for large and small networks. Scan your network and monitor your | traffic to find the data needing protection before it leaks out! | http://www.tenablesecurity.com/products/compliance.shtml _______________________________________________ Dataloss Mailing List (dataloss () attrition org) http://attrition.org/dataloss Tenable Network Security offers data leakage and compliance monitoring solutions for large and small networks. Scan your network and monitor your traffic to find the data needing protection before it leaks out! http://www.tenablesecurity.com/products/compliance.shtml
Current thread:
- Wis. mailing sent with personal info lyger (Jan 08)
- Re: Wis. mailing sent with personal info Henry Brown (Jan 10)
- Re: Wis. mailing sent with personal info Adam Shostack (Jan 10)
- Re: Wis. mailing sent with personal info Chris Walsh (Jan 10)
- Re: Wis. mailing sent with personal info Tracy Blackmore (Jan 11)
- Re: Wis. mailing sent with personal info James Childers (Jan 11)
- Re: Wis. mailing sent with personal info Adam Shostack (Jan 10)
- Re: Wis. mailing sent with personal info Henry Brown (Jan 10)
- <Possible follow-ups>
- Re: Wis. mailing sent with personal info Steve Hamburg (Jan 11)