Endpoint Protector Appliance: Stop data theft on Windows and Mac

Data Loss Affects Personal Details of over 24,000 Laredo ISD Students

March 30th, 2011 by Agent Smith (0) Data Theft & Loss,Identity Theft

Thousands of current and former high school students in the Laredo Independent School District could become identity fraud victims after a disk holding the Social Security numbers of 24,903 individuals has gone missing, said the Texas Education Agency.

Suzanne Marchman, TEA spokeswoman stated that the agency first became aware of the situation in January, when sensitive data from Laredo ISS was requested by officials with the University of Texas at Dallas’ Education Research Center .

The CD containing the information requested by TEA, was sent to the William B. Travis Building in Austin, which houses the TEA. It was received and signed for, but never reached its intended recipient. Thus, numbers for thousands of 11th and 12th graders over multiple years have been lost, instead of being delivered to James Van Overschelde, the TEA’s former director of educational research. Read more

ZeuS cybercrime toolkit can be bought on underground forums

March 24th, 2011 by Agent Smith (0) Malware Infections

It seems that files very similar to what has been called the Zeus cybercrime toolkit have appeared in some underground forums and are available for purchase.

The whole sales announcement and process has been set up by someone nicknamed IOO and it is supported by screenshots of portions of ZeuS code. IOO is not very restrictive when it comes to payments, paying for Zeus can be easily settled via any escrow services and more information can be offered via CIQ or Jabber. Read more

Data breach costs blamed on system failures

March 22nd, 2011 by Agent Smith (0) endpoint security,security breach

system failureA new survey carried out by the Ponemon Institute analyzed data breach experiences of 38 UK companies from 13 different industry sectors. According to this survey, negligence the former primary source of data breaches has been replaced by system failures.

An increase of 13% in data breach costs means that UK organisations will pay £1.9 million or £71 per record. An average cost for these type of breaches cannot be estimated as it ranges from £36,000 to £6.2 million.

The survey also showed 29% of all data breaches are caused by malicious or criminal attacks. This is an increase of 7% in 2010 from the previous year. Read more

Health Net lost personal data for 1.9 million current and former members

March 21st, 2011 by Agent Smith (0) Data Theft & Loss

Personal data for 1.9 million current and former members of Health Net Inc. may have been compromised. An investigation of a security breech has been launched in Rancho, Cordova, at Health Net’s data center. This investigation is a follow-up after IBM, the technology vendor for Health Net, sent a notice that it could not locate several server drives.

One of the lost server drives may contain sensitive information, including names, addresses, health information, Social Security numbers and/or financial information.

An investigation has been launched on Monday by The California Department of Managed Health, Health Net’s security practices. Health Net Inc. is currently notifying individuals whose information is on the lost drives and  offering two years of free credit monitoring services, including fraud resolution. Also restoration of credit files and identify theft insurance will be provided if necessary. These services will be provided with the help of Debix Identify Protection Network.

According to the agency, more than 622,000 members in health plans regulated by the Dept. of Managed Health Care may have been compromised. Also records for 223,000 members in products regulated by the Department of Insurance may find themselves in the same situation. Some Medicare beneficiaries record appear to be also lost.

Hard drive with private information of nearly 90,000 students missing

March 16th, 2011 by Agent Smith (0) Data Theft & Loss,Identity Theft

The Alaska Department of Education and Early Development issued a warning for school districts across the state announcing that a computer hard drive containing information on 90,000 students was stolen from Juneau.The Juneau Police Department is currently investigating the theft.

“Alaska law requires government agencies that collect personal information to notify you if your information is lost or stolen,” Commissioner Mike Hanley wrote in a news release. “This theft has unfortunately resulted in the release of some of your personal information to an unauthorized third party.”

Personal information such as names, birth dates, id numbers and more could have been accessed with the help of the stolen equipment. Read more

Data breaches caused by storage device theft hit again

March 4th, 2011 by Agent Smith (0) Data Theft & Loss,DLP,endpoint security

Printed, stored on computers or on flash drives, your data is just not safe. Your personal details that you entrust to companies you work with, doctors and other third parties will just end up exposed. If you are lucky enough, they might get in the hands of someone who won’t use your address, social security number or card details to harm you on their quest to get fast and easy money. If you’re unlucky, your accounts will just turn empty one day, your identity will be used to commit felonies or crimes and you will have years of paperwork and bad credit records in front of you.

Let’s check the recent data breach news. We have a stolen computer that contained names, ages, addresses and medical conditions of 700 children. Next come rushing in: backup tapes and other media containing cord blood bank customer information stolen from car, which ended up exposing about 300,000 records; and 113 patients’ names and Medicare numbers on a document stolen from a vehicleRead more

Former employee gets home detention for breaching employer email system

March 1st, 2011 by Agent Smith (0) Data Theft & Loss,endpoint security,security breach

Inside threat is kicking and screaming and far from being gone from the corporate security world. Upset over being fired, a Californian woman breached the email system of her former employer and posted confidential documents to public websites. She got caught and the sentence was 60 days of home detention plus  ayear of probation for the one count of felony computer intrusion that 44 year old Ming Shao pleaded guilty to.

In her plea, the woman admitted to a value of the stolen information belonging to PanTerra Networks(which included a Weekly Ops Report) ranging between 10,000 and 30,000 US dollars. She admitted to have breached the PanTerra network and exposing the confidential files as a form of revenge for being fired in August 2009. Read more