BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

Details of 'vulnerable' residents on stolen computer

From: security curmudgeon <jericho () attrition org>
Date: Tue, 12 Jun 2012 04:05:08 -0500 (CDT)


---------- Forwarded message ----------
From: InfoSec News <alerts () infosecnews org>

http://www.heraldscotland.com/news/home-news/details-of-vulnerable-residents-on-stolen-computer.17848796

By Gerry Braiden
Herald Scotland
12 June 2012

AN investigation is under way after a laptop computer containing the bank 
account details of thousands of companies and individuals was stolen from 
council offices in Glasgow.

Almost 38,000 city council "customers" had their personal details stored 
on the stolen laptop, which, although it was password protected, was not 
encrypted.

Among those whose details were on the computer were thousands of 
vulnerable Glasgow residents who receive care grants, as well as people 
who receive winter fuel payments.

As well as names and addresses, the bank account details of around 10,400 
com-panies and 6100 individuals were stored on the laptop.

It is one of two stolen during a break-in at council offices in Cochrane 
Street between May 28 and May 29. It comes just over two years after the 
Information Commissioner's Office censured the council over loss of an 
unencrypted memory stick with details of sex offenders, victims, witnesses 
and case officers.

[...]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.
Previous By Date Next
Previous By Thread Next

Current thread: