Top 10 Government Breaches of 2012

801 views

Published on

Published in: Technology
0 Comments
0 Likes
Statistics
Notes
  • Be the first to comment

  • Be the first to like this

No Downloads
Views
Total views
801
On SlideShare
0
From Embeds
0
Number of Embeds
348
Actions
Shares
0
Downloads
0
Comments
0
Likes
0
Embeds 0
No embeds

No notes for slide

Top 10 Government Breaches of 2012

  1. 1. The  10  Worst  Government  Breaches  of  2012  
  2. 2. 2012:  Year  of  Government  Breaches  The  2012  poli<cal  races    were  dominated  by  a  debate  about  the  “makers”  vs.    the  “takers”  among  the  American  electorate.    But  it  was  government  agencies  themselves  that    were  taken—by  hackers,  security  flaws  and  employee  inep<tude.  ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  3. 3. 2012:  Year  of  Government  Breaches  Government  agencies,  from  small  county  elec<on  boards  to  NASA,  suffered  data  breaches.  In  fact,  our  federal  and  state  governments  have  lost  more  than  94  million  data  records  in  the  past  four  years,  according  to  a  recent  report.    Here  are  the  year’s  10  worst  government  data  breaches:  ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  4. 4. 10|  NASA  Houston,  we  have  a  problem.  A  laptop  used  by  an  employee  at  NASA’s  Washington,  D.C.,  headquarters  was  stolen  from  a  parked  car.  The  laptop  was  password-­‐protected,  but  it  contained  unencrypted  files  of  more  than  10,000  NASA  employees.  Their  informa<on—names,  birth  dates,  SSNs  and  background  check  details—was  compromised.  The  space  agency  is  reviewing  its  security  policies.    ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  5. 5. 9|  North  Carolina  Five  password-­‐protected  laptops  went  missing  from  the  Robeson  County  Board  of  Elec@ons  in  Lumberton  over  the  summer.  Informa<on  on  71,000  voters  was  jeopardized.  The  computers  were  found,  but  it’s  unclear  if  the  informa<on  fell  into  the  wrong  hands.  Impacted  voters  were  encouraged  to  monitor  their  accounts  and  ac<vate  a  free  90-­‐day  fraud  alert.    ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  6. 6. 8|  Tennessee  A  hacker  group  calling  itself  SpexSec  hijacked  110,000  records  that  included  names,  SSNs  and  other  personal  informa<on  from  the  Clarksville-­‐Montgomery  County  School  System  in  mid-­‐June.  Current  and  former  employees  and  students  were  impacted.  The  group  claimed  it  had  warned  the  school  to  adhere  to  basic  network  security  policies.    ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  7. 7. 7|  Wisconsin  The  Wisconsin  Department  of  Revenue  mistakenly  posted  the  Social  Security  and  tax  iden<fica<on  numbers  of  more  than  110,000  people  and  businesses  to  a  public  website  for  three  months.  The  incident  marks  a  disturbing  trend  for  the  Badger  State:  It’s  the  fourth  <me  since  2009  that  state  agencies  were  involved  in  the  public  release  of  SSNs.   ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  8. 8. 6|  U.S.  Navy  Hackers  gained  access  to  the  U.S.  Navy’s  Smart  Web  Move  system,  which  contains  informa<on  on  household  moves  within  the  Navy.  The  private  informa<on  of  200,000  Navy  personnel  was  compromised,  although  evidence  showed  that  only  20  records  were  exposed  online.  Smart  Web  Move  was  taken  offline  permanently.  The  Navy  already  had  plans  to  begin  using  another  system.  ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  9. 9. 5|  South  Carolina  In  April,  the  state’s  Department  of  Health  &  Human  Services  reported  a  data  breach  affec<ng  228,435  Medicaid  beneficiaries.  A  former  employee  was  arrested  a?er  stealing  the  records  via  email.  The  informa<on  included  pa<ent  names,  phone  numbers,  addresses,  birth  dates  and  Medicaid  ID  numbers,  which  contain  the  pa<ent’s  SSN.    ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  10. 10. 4|  California   The  personal  informa<on  of  more  than  700,000  home-­‐care   providers  and  recipients  was  compromised  when  payroll   data  was  lost  in  the  mail.  The  state  Department  of  Social   Services  contracted  with  Hewlef-­‐Packard  to  handle  some  of   its  payroll  data.  Hewlef-­‐Packard  mailed  a  package  containing   names,  SSNs  and  wages  that  was  damaged  in  transit.    ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  11. 11. 3|  Utah   Eastern  European  hackers  pulled  780,000  Medicaid  records   from  servers  at  Utah’s  Department  of  Technology  Services.   In  addi<on  to  Medicaid  pa<ents,  recipients  of  the  state’s   Children’s  Health  Insurance  Program  were  affected,  which   makes  this  case  par<cularly  troubling.  Child  iden<ty  the?   o?en  is  discovered  when  the  vic<m  is  an  adult.  It  can  lead  to   long-­‐term  financial  repercussions.    ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  12. 12. 2|  California  Once  again,  state  contractors  played  fast  and  loose  with  government  informa<on  when  several  computer  systems  shipped  by  IBM  to  Iron  Mountain  in  Colorado  went  missing.  Roughly  800,000  adults  and  children  in  the  state’s  Department  of  Child  Support  Services  were  impacted  when  the  devices  containing  their  names,  SSNs  and  other  informa<on  were  lost  in  transit.  ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  13. 13. 1|  South  Carolina   The  largest  cyber  afack  against  a  state   government  put  three-­‐quarters  of  the  state’s   popula<on  at  risk  for  iden<ty  fraud.  A  hacker   stole  a  database  from  the  state’s  Department   of  Revenue,  exposing  3.6  million  SSNs  and   387,000  payment  card  records.  More  than   657,000  businesses  also  were  compromised.      ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  14. 14. Protect  Yourself   Governments  are  far  from  immune  to  data  breaches,  so  it’s   on  you  to  stay  vigilant.       Monitor  your  credit  reports  for  fraudulent  ac<vity.  Visit   annualcreditreport.com  to  get  a  free  copy  from  each  of   the  three  major  credit  bureaus.       If  you  think  your  informa<on  was  breached,  place  a  fraud   alert  on  those  credit  reports,  so  you’re  alerted  to  any   suspicious  ac<vity.    ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  
  15. 15. Get  Support   If  you  suspect  your  iden<ty  has  been   compromised,  call  your  bank,  credit  union,   insurer  or  membership  organiza<on.  They  may   offer  iden<ty  the?  protec<on.   Or  call  IDen@ty  TheV  911  at   1-­‐888-­‐682-­‐5911.     Don’t  be  afraid  to  ask  lots  of  ques3ons.  ©  2003-­‐2012  IDen<ty  The?  911,  LLC.  All  Rights  Reserved   December  7,  2012  

×