follow-up: Firm Hired After Security Breach Faces State Probe (fwd)

[security curmudgeon <jericho () attrition org>]

---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>

http://www.courant.com/business/hc-debix0822.artaug22,0,3146872.story

By JANICE PODSADA
Courant Staff Writer
August 22, 2008

Gov. M. Jodi Rell said Thursday that she wants an investigation into a 
company the state hired to offer credit monitoring to people affected by a 
security breach involving a stolen Department of Revenue Services laptop 
computer.

The laptop contained Social Security numbers and bank account information 
for thousands of state residents.

State officials hired Debix Identity Protection Network last year after 
the laptop was stolen from an employee's car in August 2007.

As part of its contract, Debix, based in Austin, Texas, agreed to monitor 
the credit reports of 53,000 people through the three major credit 
bureaus.

The state received complaints after those people received letters from 
Experian, one of the three credit bureaus, asking for confidential 
information in order to continue the monitoring, Rell said.

[...]
_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml