[Dataloss] Stolen server holds 2,500 Social Security numbers

Richards, Jim jim.richards at dot.state.wi.us
Thu Dec 21 10:57:23 EST 2006


'Encrypted by password' makes me nervous...

That would be the vague CYA that PR people would say,  when it is merely
unencrypted, yet 'protected' by passwords.

James Richards
Computer Security Officer
Wisconsin Department of Transportation

-----Original Message-----
From: Dissent [mailto:Dissent at pogowasright.org]
Sent: Thursday, December 21, 2006 7:52 AM
To: dataloss at attrition.org
Subject: [Dataloss] Stolen server holds 2,500 Social Security numbers


http://www.mercurynews.com/mld/mercurynews/news/local/states/california/peni
nsula/16289017.htm

A computer stolen from Santa Clara County's employment agency
contained the Social Security numbers of 2,500 people who are being
advised to take steps to protect themselves from identity theft.

The risk to clients is not believed to be high because the information
was encrypted by passwords, according to a statement from the county.
Only those who have used the PESCO software to assess their job skills
are affected.

The theft was discovered last week and reported to police Friday.

Three computer servers were stolen from an unoccupied building
undergoing construction. Because of electrical work, the power had
been turned off and the alarm was not working. Two of the servers did
not contain client information; the third server did. The information
included names, Social Security numbers and job skill assessments, but
not addresses or telephone numbers.

The county is notifying affected clients.

-- 
Privacy-related news and resources: http://www.pogowasright.org
Privacy news headlines feed:
http://www.pogowasright.org/backend/pogowasright.rss

_______________________________________________
Dataloss Mailing List (dataloss at attrition.org)
http://attrition.org/dataloss
Tracking more than 143 million compromised records in 512 incidents over 6
years.



More information about the Dataloss mailing list