in

This Blog

Syndication

Tags

News

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

Archives

AlertBoot Endpoint Security

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

Laptop Encryption Software: Stolen Laptop Breaches VA Information, 824 Affected

Déjà vu?  The Augusta Chronicle notes how the VA had another data breach when a laptop was stolen.  One wonders, how can this be, when the VA has announced that all of their laptops are protected with encryption software

Shifting Risk: People Becoming the Problem

As it turns out, the missing laptop is a personal computer that belonged to a physician associated with the Charlie Norwood VA Medical Center in Augusta, Georgia.  It contained names, the SSN's last four digits, discharge dates, and medical providers' names.

At the time, he had a professional need for the information but violated VA policy by putting the information on his personal laptop before it was stolen March 30, said Alicia Miller, the acting public affairs officer.

"He did do due diligence and notify us when the laptop was stolen," Miller said.
No action will be taken against the physician because he has already left the hospital, Miller said. [augusta.com]

In the future, you can expect more stories like these to appear whenever you see the words "data breach," "laptop," and "VA" in a headline.  The reason?  Because the VA's biggest data breach threat is now people.

Of course, that's always been true: after all, laptops, USB disks, and paper documents don't have feet and go missing by themselves.  There's always someone involved.  But, seeing how the VA has deployed encryption on all of its computers (I have no reason to doubt this claim), the loss of department laptops will no longer be the reason for data breaches.

If the loss of a laptop does become the focal point of a data breach, it will be because someone decided to break the rules.  Which goes to show that technology alone cannot solve data security problems; one really needs to involve education.


Related Articles and Sites:
http://chronicle.augusta.com/latest-news/2012-06-01/stolen-laptop-contained-veteran-information-va-says
http://www.phiprivacy.net/?p=9532

 
<Previous Next>

Health Data Breach Cost: Canada's Durham Region Health Settles USB Loss For $500,000

UK Data Protection: ICO Penalizes Telford and Wrekin Council £90,000 For Two Breaches In As Many Months

Comments

No Comments

About sang_lee

Sang Lee is a Senior Account Manager and Security Analyst with AlertBoot, Inc., the leading provider of managed endpoint security services, based in Las Vegas, NV. Mr. Lee helps with the deployment and ongoing support of the AlertBoot disk encryption managed service. Prior to working at AlertBoot, Mr. Lee served in the South Korean Navy. He holds both a B.S. and an M.S. from Tufts University in Medford, Massachusetts, U.S.A.