[ISN] Data breach affects about 4,000 SEC workers

From: InfoSec News <alerts_at_private>
Date: Fri, 20 May 2011 02:57:22 -0500 (CDT)

By Shan Li
Los Angeles Times
May 19, 2011

The Securities and Exchange Commission is having some security problems 
of its own.

About 4,000 agency employees, including several in Los Angeles, have 
been notified that their Social Security numbers and other payroll 
information were included in an unencrypted email, according to Drew 
Malcomb, a Department of Interior spokesman.

The May 4 email was sent by a contractor at the department's National 
Business Center, which manages payroll, human resources and financial 
reporting for dozens of federal agencies, Malcomb said. Interior 
Department policies require that sensitive personnel information be 
encrypted when emailed.

But the contractor neglected to encrypt the email, and the software in 
place to catch such errors did not work properly, Malcomb said.


Tegatai Managed Colocation: Four Provider Blended
Tier-1 Bandwidth, Fortinet Universal Threat Management,
Natural Disaster Avoidance, Always-On Power Delivery 
Network, Cisco Switches, SAS 70 Type II Datacenter. 
Find peace of mind, Defend your Critical Infrastructure.
Received on Fri May 20 2011 - 00:57:22 PDT

This archive was generated by hypermail 2.2.0 : Fri May 20 2011 - 01:12:11 PDT