Sprint: Employee Stole Customer Data

[lyger <lyger () attrition org>]

http://voices.washingtonpost.com/securityfix/2009/03/sprint_employee_stole_customer.html?wprss=securityfix

Sprint is warning several thousand customers that a former employee sold 
or otherwise provided their account data without permission.

In letters sent via snail mail to some customers, Sprint urged recipients 
to contact customers service and change their existing personal 
identification number and security question. Turns out, a Sprint employee 
accessed "multiple customer accounts," between Dec. 2008 and Jan. 2009.

"It appears this employee may have provided customer information to a 
third party in violation of Sprint policy and state law. We have 
terminated this employee. The information that may have been compromised 
includes your name, address, wireless phone number, Sprint account number, 
the answer to your security question, and the name of the authorized point 
of contact on your account."

[...]

_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)

CREDANT Technologies, a leader in data security, offers advanced data encryption solutions.
Protect sensitive data on desktops, laptops, smartphones and USB sticks transparently 
across your enterprise to ensure regulatory compliance.
http://www.credant.com/stopdataloss