RSS Alerts

Share

More services

Related Stories

  • Two US companies own up to breaches
    On a regular basis, companies are having to own up to data breaches. HealthNow New York and MTV Networks are just the latest two making security gaffes.
  • Data Breach Spring
    Infosecurity’s Drew Amorosi examines three data breach incidents from the past few months that, by their nature, keep security vendors in business, regulators busy, and CISOs up at night. Find out why industry observers think this rash of massive breaches could lead to a ‘PCI for consumer privacy’
  • Comment: Data Breaches a Symptom of a Bigger Problem
    The recent rash of high-profile data breaches can have a happy ending if IT and security leaders can convince the C-suite to break the cycle. In this op-ed, Johnathan Norman of Alert Logic explains that the first step is getting the C-suite to consider the value of their data and how much a breach would cost, so they can understand the enormous risk they are taking.
  • As temp staff take over for Christmas, Courion issues security advice
    With the Christmas and New Year holidays looming, Courion Corporation, the access governance and compliance specialist, has released `five golden rules' - a set of best-practice-based guidelines for companies looking to reduce the security risk posed by temporary workers.
  • Keeping sensitive information secure when staff is leaving
    Career loyalty is an endangered creature. Unlike our predecessors, today’s workforce is unlikely to stay committed to a job for five years, let alone their entire lives. But with such a fluid stream of employees keeping human resources busy, and countless eyes being cast over company data, Rob Stringer investigates how sensitive information can stay faithful to its organisation, even if its staff don’t...

Top 5 Stories

News

Two US companies own up to breaches

14 March 2008

On a regular basis, companies are having to own up to data breaches. HealthNow New York and MTV Networks are just the latest two making security gaffes.

Recently, files containing confidential data on about 5 000 employees at MTV Networks were illegally accessed by someone outside the company, according to the network. The security breach occurred when data was compromised over an internet connection on an employee’s computer.

While the company declined to provide any information about how many employees were affected or what the nature of the compromised information was, an internal memo from executive vice president for human resources at MTV Networks Catherine Houser, stated the personal information in the files included names, birth dates, social security numbers and compensation data.

MTV is currently conducting an investigation in connection with the breach.

Parent company, Viacom said police have launched a criminal investigation and the company is offering credit-monitoring to alert and protect the identities of the affected employees. MTV did not release further details of the attack.

HealthNow NewYork alerted some 40 000 members in Western and Northeastern New York State that they may be at risk for identity theft after a former employee’s laptop computer went missing with confidential information several months ago.

The parent, Blue Cross BlueShield of Western New York, sent letters to affected customers last week, according to a report in The Buffalo News.

According to that report, the potential information included names, dates of birth, social security numbers, addresses, employer group names and health insurance identifier numbers.

The laptop was not encrypted but did have security features such as the requirement to enter the user’s identification number and passcode after 15 minutes of inactivity. The company also shut down the laptop’s access to the corporate network and said it had not detected any activity from the laptop since its disappearance.

HealthNow New York has reconfigured its claims software system and has tightened its policies and procedures about use of laptops and other mobile devices.

These latest events are small compared to the most significant breach this decade at retailer TJX, which was acknowledged by the company in January 2007.

Data thieves broke into the companies processing servers and removed credit and debit card information on more than 100 million accounts.

This article is featured in:
Data Loss  • Internet and Network Security

 

Comment on this article

You must be registered and logged in to leave a comment about this article.

Terms & Conditions |Privacy |Website Design|Reed Exhibitions. All rights reserved. Copyright © 2012