BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

breach at People's United Bank or fraud attempt?

From: "Allan Friedman" <allan_friedman () ksgphd harvard edu>
Date: Wed, 9 Apr 2008 13:59:09 -0400
I especially like the bit where the bank claims that their "primary
concern" is safeguarding customer data that they left in a dumpster.

http://www.boston.com/news/local/connecticut/articles/2008/04/06/taking_bank_trash_fairfield_man_claims_security_lapse/

For four months, James Hastings searched through trash bins outside
People's United Bank branches in Fairfield County. He pulled out bags
of paperwork with private information, including customers' Social
Security numbers and account information.

The bank last month won a restraining order against Hastings, 56,
requiring him to not discuss the matter or distribute paperwork. He
has since been interviewed by the Connecticut Post.

People's Bank said Hastings is trying to extort money and claims he
asked to be hired as a "fraud consultant." Bank officials also are
demanding that the information be returned.

Brent DiGiorgio, a spokesman for People's Bank, said its primary
concern is protecting the customers' information that Hastings has
taken. The bank promises to provide a year of free credit monitoring
to customers whose information was taken and has contacted affected
customers, he said.

...

Hastings said that after several months he contacted People's and met
March 19 with William A Gniazdowski, the bank's director of corporate
security. Gniazdowski said Hastings asked that People's hire him as a
"fraud consultant."

Hastings, who has served a two-year probation for trying to get drugs
from a pharmacy by impersonating a doctor, denied Gniazdowski's
accusation. He said he told bank officials that People's needs a
consultant.

"You don't need to hire me," he said he told bank officials.
_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml
Previous By Date Next
Previous By Thread Next

Current thread: