in

This Blog

Syndication

Tags

News

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

Archives

AlertBoot Endpoint Security

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

Laptop Encryption Software: NHS Birmingham Issuing Security Alert

The theft of three laptops has prompted Birmingham NHS to issue notification letters to more than 7,000 patients.  It has been confirmed that none of the computers were making use of hard drive encryption software.

One of the computers was stolen from a car.  Another was stolen during a mugging (second such instance I have read of).  There is no mention of how the third one was lost.

All three computers were owned by Trulife, a surgical firm whose services were used by various hospitals, including Birmingham Children's and City, Sandwell and Rowly Regis. The former saw approximately 3,500 patients affected, while the latter had over 3,600 patients affected.

Letters of apology are being sent out from Trulife explaining the situation.  I can't help but notice that the UK seems to approach the issue of data breaches differently from the US.

In the US, it's generally the original holder of the data that is deemed responsible.  That is, if the above data breach had occurred on this side of the Atlantic, it would have been the hospitals sending out the letter, possibly mentioning that an outside firm had experienced the data breach.

The use of data security products, such as encryption software would have meant that such a fiasco could have been avoided.  Indeed, that's the reason why anyone would use data encryption at all.

Actually, let me rephrase that.  The fiasco I'm referring to is the possibility of sensitive data falling into the wrong hands.  Obviously, the use of encryption couldn't have prevented the burglary itself, nor the mugging (otherwise, I bet the industry wouldn't have any problems selling this stuff--not that they're doing badly).

Likewise, if I'm not wrong, under UK regulations, the affected hospitals would still have to announce the breaches, since sensitive data has been stolen.  But, they would get to mention that the data is unlikely to fall into the hands of criminals.

The Information Commissioner's Office would get involved only minimally, and affected patients (and their parents) probably would let the issue slide....ever since the UK government lost those two CDs, with sensitive information on nearly half the country's population, the UK public seems to understand the benefits of encryption.


Related Articles and Sites:
http://www.sundaymercury.net/news/midlands-news/2009/08/30/birmingham-news-nhs-security-alert-over-stolen-laptop-66331-24563380/

 
<Previous Next>

Skype Encrypts Your Calls, Trojan Gets Around It

Drive Encryption Software Applied To Lost (And Recovered) Normandeau Laptop Computer

Comments

No Comments

About sang_lee

Sang Lee is a Senior Account Manager and Security Analyst with AlertBoot, Inc., the leading provider of managed endpoint security services, based in Las Vegas, NV. Mr. Lee helps with the deployment and ongoing support of the AlertBoot disk encryption managed service. Prior to working at AlertBoot, Mr. Lee served in the South Korean Navy. He holds both a B.S. and an M.S. from Tufts University in Medford, Massachusetts, U.S.A.