CONSUMER NEWS RECALLS COMPLAINT FORM SCAM ALERTS

Small Claims Guide \| Class Actions \| Lemon Law \| FAQ \| Resources \| Newsletters \| Spanish
Automotive Education Electronics Family Finance Health Homeowners Shopping Travel

64,000 Ohio Workers Caught In Data Breach

By Martin H. Bosworth
ConsumerAffairs.com

June 15, 2007

Data Theft
• Bank Data Breach Affects 12.5 Million Consumers
• Data Breaches Exceed 2007 Record
• Thieves Steal AT&T Laptop with Employee Data
• Report: Data Breach Disclosure Laws Don't Affect Identity Theft
• Patient Information Exposed in Data Breach at Walter Reed
• Supermarket Chain Reports Data Breach
• Report: Feds Still Not Doing Enough To Secure Data
• Data Thieves Hit Georgetown University Students, Faculty
• 800,000 Job Seekers At Risk In Gap Data Breach
• TJX Data Breach Settlement Has Strings Attached
• More ...

A portable storage device containing personal information on 64,467 workers employed by the state of Ohio was stolen from an intern's car on June 10, according to a statement from the office of Governor Ted Strickland. The storage device contained names and Social Security numbers.

"I have asked the Ohio Highway Patrol to lead the investigation to recover the device," Strickland said in his statement, posted on the state's government Web site. "Also, I have directed the Department of Administrative Services to secure the opportunity for state employees to access free identity theft prevention and protection services for one year."

The unidentified intern had been incorrectly authorized to take the copied data home with him as part of the state government's regular policies on backing up sensitive data.

Gov. Strickland signed an executive order ceasing that practice, ordered a review of agency procedures for backing up data, and said that he would "take appropriate disciplinary action when the facts are known."

Strickland emphasized that the device could not be accessed without special equipment.

"I don't mean to alarm people unnecessarily," Strickland said. "There's no reason to believe a breach of information has occurred." Nevertheless, Strickland authorized all affected employees to be provided with free credit monitoring for one year, at a cost to the state of $660,000. The state also set up a Web page and toll-free number for affected individuals to call and get information regarding the breach.

Thefts or losses of computer equipment that contain personal data remain one of the largest sources of data breaches. The data is often unencrypted and easily visible to anyone, sometimes even without password protection. Laptop computers, disks or CD-ROMS, and "thumb drives" all present serious vulnerabilities if they are not properly stored and maintained when filled with sensitive data.

Employees also often lack proper training in data security and protection for the files they're entrusted with, or circumvent safety measures to make their jobs easier.

Until recently, Ohio held the dubious honor of largest university-based data breach, caused when hackers broke into the networks of Ohio University and exposed the personal information of nearly 500,000 students, faculty, employees, and retirees. The breaches led to firings of multiple employees and increased scrutiny of the security vulnerabilities of college and university computer networks.

Report Your Experience
If you've had a bad experience -- or a good one -- with a consumer product or service, we'd like to hear about it. All complaints are reviewed by class action attorneys and are considered for publication on our site. Knowledge is power! Help spread the word. File your consumer report now.

August 29 2008

GM Recalls Buicks, GMCs, Saturns to Fix Wipers

Ford Recalls Big Trucks, Motor Homes

Harley Davidson Motorcycles

FREE CONSUMER NEWSLETTERS

The Daily Consumer
Afternoons M-F
Sign up now!

Consumer News & Alerts
Every Sunday
Sign up now!

Knowledge is free.
Knowledge is power.

Back to the top |

Terms of Use Your use of this site constitutes acceptance of the Terms of Use

Advertisements on this site are placed and controlled by outside advertising networks. ConsumerAffairs.com does not evaluate or endorse the products and services advertised. See the FAQ for more information.

Company Response Welcome If complaints about your company appear on our site, we welcome your response. Please see the Response Form for more information.

For more information, see the FAQ and privacy policy. The information on this Web site is general in nature and is not intended as a substitute for competent legal advice. ConsumerAffairs.com Inc. makes no representation as to the accuracy of the information herein provided and assumes no liability for any damages or loss arising from the use thereof.