NEOHAPSIS - Peace of Mind Through Integrity and Insight

Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email hr@neohapsis.com

Neohapsis > Archives > Attrition Dataloss> 2008-08

[Dataloss] Personal data of 1m bank customers found on secondhand computer sold on eBay for 35UKP

From: security curmudgeon (jerichoattrition.org)
Date: Tue Aug 26 2008 - 04:46:47 CDT

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

---------- Forwarded message ----------
From: InfoSec News <alertsinfosecnews.org>

http://www.dailymail.co.uk/news/article-1049121/Personal-data-1m-bank-customers-secondhand-sold-eBay-35.html

By Dan Newling
dailymail.co.uk
25th August 2008

Personal details of more than a million bank customers have been found on
a computer sold on eBay.

Highly- sensitive information on American Express, NatWest and Royal Bank
of Scotland customers was stored on the machine's hard drive.

It includes names, addresses, mobile phone numbers, bank account numbers,
sort codes, credit card numbers, mothers' maiden names and even
signatures.

It was described as 'a data thief's treasure chest', with everything a
criminal needs to assume a customer's identity - and clear out their bank
account.

The massive data loss - one of the worst ever in Britain - is a clear
breach of the banks' obligation under the Data Protection Act to keep all
personal information secure.

Coming just days after the Home Office admitted losing the details of
127,000 criminals, it is certain to fuel public concern about how
Government and businesses look after our secrets.

Last night it was revealed that a second computer from the same site has
gone missing, meaning yet more information could have leaked.

IT security expert Adam Laurie said: 'This is appalling. This information
is worth millions - a thief could easily use it to go on an enormous
shopping spree.'

[...]
_______________________________________________
Dataloss Mailing List (datalossattrition.org)
http://attrition.org/dataloss

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml

Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]