Slashdot Mirror

← Back to Stories (view on slashdot.org)

TSA Loses Hard Drive With Personnel Info

Posted by CowboyNeal on from the living-up-to-their-name dept.

WrongSizeGlass writes "A portable hard drive containing personnel data for former and current employees, went missing from a controlled area at the TSA. From the article: 'The Transportation Security Administration has lost a computer hard drive containing Social Security numbers, bank data and payroll information for about 100,000 employees.'"

6 of 123 comments (clear)

  1. Captain Obvious says : by witte · · Score: 5, Insightful

    Maybe using Social Security numbers for just about everything isn't such a good idea.

  2. And in the UK today too by AmIAnAi · · Score: 5, Insightful
    A BBC article disclosed that a laptop had been stolen that contained Marks & Spencer employee details

    From the BBC article:

    Salary details, addresses, dates of birth, national insurance and phone numbers were on the machine which was stolen from a printing firm.
    It is now too easy for huge quantities of private data to be carried around on laptops and memory sticks, often by people who do not understand the consequnces of failing to protect that data. Companies need to be held to account when data is lost.
    --
    Any sufficiently advanced bug is indistinguishable from a feature.
  3. Portable HDD? by bulliver · · Score: 5, Insightful

    There's your problem. I can see the allure of using a portable drive, in that you can easily move the data around from computer to computer, but really, we have a better way to move the data: The bloody network! That HDD should have been screwed into a locked case mounted in a rack bolted to the floor of a securely locked room.

    --
    Support the mob or mysteriously disappear.
  4. some people never learn by Isaac-Lew · · Score: 4, Insightful
    Why would this information even on a portable drive? And why would it not be encrypted?

    This is why I try not to use my Social Security number for identification purposes anymore. I really should try to figure out who has it & what I can do to reduce the use of it.

  5. Re:Encrypted ? by Tuoqui · · Score: 4, Insightful

    Encryption is not undefeatable.

    The entire idea behind encryption is to make it difficult/impossible to the casual hacker. If someone were dedicated to get into the information contained within however it would only be a matter of two variables... Time and Processing power.

    Encryption is not a silver bullet to any and all security problems, it just mitigates some of the risk. If they cant crack the encryption within 20 years then most of the info would be useless by then. If they can do it in 3 months then its a problem...

    --
    09F911029D74E35BD84156C5635688C0
    +2 Troll is Slashdot's way of saying groupthink is confused
  6. Why was this on a portable HD in the first place? by wwphx · · Score: 5, Informative

    I've been in gov't IT for 15 years, this should never have left the server farm. If it had to be on a portable device, it should have been a laptop and heavily encrypted, not that I can see a good reason to give anyone that info. The retirement planning people can make do with very little info.

    --
    When you sympathize with stupidity, you start thinking like an idiot.