infosec-news February 2011 archive
Main Archive Page > Month Archives  > infosec-news archives
infosec-news: [ISN] [Dataloss Weekly Summary] Week of Sunday, Fe

[ISN] [Dataloss Weekly Summary] Week of Sunday, February 6, 2011

From: InfoSec News <alerts_at_nospam>
Date: Tue Feb 15 2011 - 06:44:24 GMT
To: isn@infosecnews.org

========================================================================

Open Security Foundation - DataLossDB Weekly Summary
Week of Sunday, February 6, 2011

21 Incidents Added.

========================================================================

DataLossDB is a research project aimed at documenting known and reported
data loss incidents world-wide. The Open Security Foundation asks for
contributions of new incidents and new data for existing incidents. For
any questions about the project or the data contained within this email
or the website (http://www.datalossdb.org), please contact us at
curators@datalossdb.org.

========================================================================

DataLossDB News/Updates

  No news this week!

========================================================================

Incidents Added

Reported Date: 2011-02-09
Summary: 500 employees Social Security numbers and payroll information lost on portable thumb drive
Organizations: Oregon Department of Corrections
http://datalossdb.org/incidents/3349
---------------------

Reported Date: 2011-02-08
Summary: 400,000 email addresses exposed due to website hack
Organizations: RecruitIreland.com
http://datalossdb.org/incidents/3347
---------------------

Reported Date: 2011-02-04
Summary: 2,400 beneficiaries' names, Social Security numbers and other identifying information emailed to personal computer, two attorneys and two union representatives
Organizations: Medi-Cal
http://datalossdb.org/incidents/3348
---------------------

Reported Date: 2011-01-26
Summary: Credit and debit card information stolen
Organizations: University Book Exchange
http://datalossdb.org/incidents/3350
---------------------

Reported Date: 2011-01-06
Summary: Unsecured patient information on computers stolen by employee and sold to computer store
Organizations: Grant Medical Center, OhioHealth
http://datalossdb.org/incidents/3367
---------------------

Reported Date: 2010-12-20
Summary: Former employee accused of stealing patients information and giving it to her boyfriend
Organizations: Newland Medical Center
http://datalossdb.org/incidents/3362
---------------------

Reported Date: 2010-12-09
Summary: Past employees first and last names, Social Security numbers, passport numbers, addresses, date of birth and place of birth lost from hard drive stolen in transit
Organizations: Wackenhut Services
http://datalossdb.org/incidents/3365
---------------------

Reported Date: 2010-12-09
Summary: 110,000 credit card numbers exposed as website is hacked
Organizations: CitySights NY
http://datalossdb.org/incidents/3364
---------------------

Reported Date: 2010-12-08
Summary: 1,107 names, date of birth and Social Security numbers stolen from computer during a break-in at the companies headquarters
Organizations: Concur Technologies
http://datalossdb.org/incidents/3361
---------------------

Reported Date: 2010-06-07
Summary: Names and Social Security numbers exposed on two DVD's lost in transit
Organizations: Towers Watson, National Gypsum Company
http://datalossdb.org/incidents/3366
---------------------

Reported Date: 2010-03-22
Summary: Passwords were compromised and allegedly misused to access criminal, family and financial background
Organizations: Arkansas Crime Information Center
http://datalossdb.org/incidents/3352
---------------------

Reported Date: 2010-03-18
Summary: A lab worker arrested on a felony charge of obtaining credit card information
Organizations: Specialty Laboratories
http://datalossdb.org/incidents/3358
---------------------

Reported Date: 2010-03-18
Summary: Debit accounts were hacked exposing customers in the Cincinnati area
Organizations: National City Bank
http://datalossdb.org/incidents/3355
---------------------

Reported Date: 2010-03-17
Summary: Documents including social security numbers were found in garbage bags near an alley garbage can
Organizations: Albany Police Department
http://datalossdb.org/incidents/3353
---------------------

Reported Date: 2010-03-13
Summary: Partner could not locate a CD containing customer information, including names, dates of birth, and Social Security numbers
Organizations: John Hancock Financial Services
http://datalossdb.org/incidents/3354
---------------------

Reported Date: 2010-03-13
Summary: Computer system breached exposing 35,000 customer's information, including partial credit numbers.
Organizations: Beer & Wine Hobby
http://datalossdb.org/incidents/3351
---------------------

Reported Date: 2010-03-11
Summary: A former VA physician's assistant stored unauthorized personal patient data on a personal laptop.
Organizations: U.S. Department of Veterans Affairs
http://datalossdb.org/incidents/3357
---------------------

Reported Date: 2010-03-01
Summary: Laptop containing sensitive bank information, including personal information about customers was missing from desk.
Organizations: US Bank
http://datalossdb.org/incidents/3356
---------------------

Reported Date: 2009-12-18
Summary: A courier carrying a bag containing customer's checks and account maintenance forms for a Baltimore branch was robbed
Organizations: M&T Bank
http://datalossdb.org/incidents/3360
---------------------

Reported Date: 2009-09-01
Summary: Names, addresses and Social Security numbers exposed due to Schedule K-1 tax forms being incorrectly mailed
Organizations: The Weatherlow Fund I L.P., Citco Inc., Evanston Capital Management
http://datalossdb.org/incidents/3368
---------------------

Reported Date: 2009-07-27
Summary: A computer was stolen from unnamed vendor containing unencrypted information on 200 customers, including their names, addresses, phone numbers, and credit card/debit card information
Organizations: Hotels.com
http://datalossdb.org/incidents/3359
---------------------

========================================================================

Blotter Posts

Added: 2011-02-11
Title: Two identity thieves plead guilty to $786,000 rip off
http://www.sun-sentinel.com/news/local/breakingnews/fl-id-thieves-guilty-20110211,0,269099.story?track=rss
---------------------

Added: 2011-02-11
Title: Bill would increase penalties for identity theft
http://blogs.kansas.com/gov/2011/02/11/bill-would-increase-penalties-for-identity-theft/
---------------------

Added: 2011-02-10
Title: Fake ID may lead to identity theft: official
http://www.cbc.ca/canada/prince-edward-island/story/2011/02/10/pei-fake-identity-theft-584.html?ref=rss
---------------------

Added: 2011-02-10
Title: Risk of identity theft in hotel declines
http://rssfeeds.usatoday.com/~r/UsatodaycomTravel-TopStories/~3/lv86jTagKMk/1
---------------------

Added: 2011-02-10
Title: School Officials Warn of Identity Theft
http://www.blogher.com/school-officials-warn-identity-theft
---------------------

Added: 2011-02-09
Title: Identity theft down but cost skyrockets
http://www.networkworld.com/news/2011/020811-identity-theft.html?fsrc=netflash-rss
---------------------

Added: 2011-02-09
Title: The Nasdaq Hacking Case Raises Big Red Flags for Exchanges
http://www.dailyfinance.com/2011/02/06/the-nasdaq-hacking-case-raises-big-red-flags-for-exchanges/
---------------------

Added: 2011-02-09
Title: "Dating" site imports 250,000 Facebook profiles, without permission
http://feeds.arstechnica.com/~r/arstechnica/index/~3/KQ3sGfkqVy0/dating-site-imports-250000-facebook-profiles-without-permission.ars
---------------------

Added: 2011-02-09
Title: Identity-theft statistics look better, but you still don't want to be one
http://feeds.washingtonpost.com/click.phdo?i=ce30834035c72ec335da6bcdef5fa524
---------------------

_______________________________________________
Dataloss Mailing List (dataloss@datalossdb.org)

CREDANT Technologies, a leader in data security, offers advanced data
encryption solutions. Protect sensitive data on desktops, laptops,
smartphones and USB sticks transparently across your enterprise to
ensure regulatory compliance. http://www.credant.com/stopdataloss

___________________________________________________________
Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery
Network, Cisco Switches, SAS 70 Type II Datacenter.
Find peace of mind, Defend your Critical Infrastructure.
http://www.tegataiphoenix.com/