BreachExchange mailing list archives

Previous By Date Next
Previous By Thread Next

CMS files stolen from employee’s car

From: Erica Absetz <eabsetz () opensecurityfoundation org>
Date: Wed, 9 Jan 2013 10:59:47 -0500
http://www.charlotteobserver.com/2013/01/08/3770745/cms-files-stolen-from-employees.html

About 80 Charlotte-Mecklenburg Schools employees have been warned to
be on guard against identity theft after files containing their
personal data were stolen from a human resource employee’s car.

The personnel files, which contained names, addresses, Social Security
numbers, dates of birth and driver’s license numbers, were stolen Nov.
28, when the HR employee stopped for lunch, CMS spokeswoman Tahira
Stalberte said. She said a CMS investigation determined that the
employee, who was driving from one district office to another, did
nothing wrong.

Affected employees, who work in the transportation department, got a
letter notifying them on Dec. 3, Stalberte said. The Observer got a
copy from a concerned employee over the weekend.

CMS said Monday that 60 employees’ records were stolen, but revised
that Tuesday to 80.

CMS is providing one year of free Equifax credit and ID monitoring to
the employees whose data was stolen, at a total cost of about $8,000,
Stalberte said. The letter from Kelly Gwaltney, recently named chief
human resources officer, urges the employees to be vigilant.

“We encourage you to visit the Federal Trade Commission website at
www.ftc.gov ... to obtain more information on privacy guidelines and
to monitor your account statements and credit reports to ensure that
your personal information is not misused,” the letter says. “We take
our obligation to protect employee information seriously, and deeply
regret any inconvenience or concern that this incident may cause you.
”
_______________________________________________
Dataloss-discuss Mailing List (dataloss-discuss () datalossdb org)
Archived at http://seclists.org/dataloss/
Unsubscribe at http://datalossdb.org/mailing_list

Supporters:

Risk Based Security (http://www.riskbasedsecurity.com/)
Risk Based Security equips organizations with security intelligence, risk
management services and on-demand security solutions to establish
customized risk-based programs to address information security and
compliance challenges. 

Tenable Network Security (http://www.tenable.com/)
Tenable Network Security provides a suite of solutions which unify real-time
vulnerability, event and compliance monitoring into a single, role-based, interface
for administrators, auditors and risk managers to evaluate, communicate and
report needed information for effective decision making and systems management.
Previous By Date Next
Previous By Thread Next

Current thread: