Stolen U of Cincinnati flash drive affects more than 7,000
Technorati Tag: Security Breach
Date Reported:
10/18/07
Organization:
University of Cincinnati
Contractor/Consultant/Branch:
None
Victims:
University of Cincinnati students and graduates
Number Affected:
More than 7,000
Types of Data:
"Social Security numbers and other data"
Breach Description:
A flash drive that contained sensitive personal information on more that 7,000 current and former University of Cincinnati students was stolen from the desk of a university employee.
Reference URL:
The Enquirer Report
Cincinnati WKRC Online Report
Report Credit:
The Enquirer
Response:
From the online resources cited above:
"A flash drive stolen from a University of Cincinnati employee last month contained information about more than 7,000 students and graduates, school officials said Wednesday."
"It had the Social Security numbers and other data"
"There has been no indication that any of the information has been misused, according to university spokesman Greg Hand."
"We don't believe the person who stole this (the flash drive) knew what was on it," he said."
[Comfyllama] Studies that we have conducted show that 82% of the people that find a flash drive, connect it to their computer to see what was on it. The person sho stole the flash drive may not have known what was on it, but almost certainly does now! One can only hope that the person would be honest, but are people who steal honest?
"Letters have been sent to the students, and the three major credit-reporting agencies involved have been alerted, Hand said."
Commentary:
There really isn't much reported on this breach. I am surprised that we don't hear about lost or stolen flash drives more often. They are significantly smaller than laptops, making them easier to lose and can literally hold millions of records.
I wonder why this employee was permitted to store confidential information on a flash drive. I wonder why the data on the drive was not encrypted. I wonder why we don't know more information about this breach.
Past Breaches:
Unknown
Date Reported:10/18/07
Organization:
University of Cincinnati
Contractor/Consultant/Branch:
None
Victims:
University of Cincinnati students and graduates
Number Affected:
More than 7,000
Types of Data:
"Social Security numbers and other data"
Breach Description:
A flash drive that contained sensitive personal information on more that 7,000 current and former University of Cincinnati students was stolen from the desk of a university employee.
Reference URL:
The Enquirer Report
Cincinnati WKRC Online Report
Report Credit:
The Enquirer
Response:
From the online resources cited above:
"A flash drive stolen from a University of Cincinnati employee last month contained information about more than 7,000 students and graduates, school officials said Wednesday."
"It had the Social Security numbers and other data"
"There has been no indication that any of the information has been misused, according to university spokesman Greg Hand."
"We don't believe the person who stole this (the flash drive) knew what was on it," he said."
[Comfyllama] Studies that we have conducted show that 82% of the people that find a flash drive, connect it to their computer to see what was on it. The person sho stole the flash drive may not have known what was on it, but almost certainly does now! One can only hope that the person would be honest, but are people who steal honest?
"Letters have been sent to the students, and the three major credit-reporting agencies involved have been alerted, Hand said."
Commentary:
There really isn't much reported on this breach. I am surprised that we don't hear about lost or stolen flash drives more often. They are significantly smaller than laptops, making them easier to lose and can literally hold millions of records.
I wonder why this employee was permitted to store confidential information on a flash drive. I wonder why the data on the drive was not encrypted. I wonder why we don't know more information about this breach.
Past Breaches:
Unknown
Posts Atom 1.0
Comments