[ISN] Unencrypted AT&T laptop stolen, details of managers' pay lost

From: InfoSec News (alerts@private)
Date: Wed Jun 11 2008 - 01:03:54 PDT


http://www.computerweekly.com/Articles/2008/06/10/231006/unencrypted-att-laptop-stolen-details-of-managers-pay.htm

By Antony Savvas
ComputerWeekly.com
10 June 2008

Telecoms carrier AT&T has admitted that it failed to encrypt a laptop 
that was stolen, which carrying the details of managers' salaries and 
other staff details.

The laptop was stolen from an employee's car last month, and the firm is 
now planning to strengthen its laptop security procedures following the 
theft.

Along with executive salary and bonus details - which could prove 
embarrassing if posted on the web - the laptop contained Social Security 
numbers and other personal details which would be useful to identity 
thieves.

"The fact that it is AT&T that has encountered this problem highlights 
the reality that no one is immune to being hit by a data breach that 
could result in identity theft," said Michael Callahan, chief marketing 
officer at laptop encryption specialist CREDANT Technologies.

"Our observations suggest that incidents like this usually result in a 
significant change of policy within the company. Although this can be 
interpreted as shutting the stable door after the horse has bolted, a 
positive change of company policy on encryption is always welcome," he 
said.


_______________________________________________      
Attend Black Hat USA, August 2-7 in Las Vegas, 
the world's premier technical event for ICT security experts.
Featuring 40 hands-on training courses and 80 Briefings 
presentations with lots of new content and new tools.
Network with 4,000 delegates from 50 nations.  
Visit product displays by 30 top sponsors in 
a relaxed setting. http://www.blackhat.com



This archive was generated by hypermail 2.1.3 : Wed Jun 11 2008 - 01:19:35 PDT