in

This Blog

Syndication

Tags

News

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

Archives

AlertBoot Endpoint Security

AlertBoot offers a cloud-based full disk encryption and mobile device security service for companies of any size who want a scalable and easy-to-deploy solution. Centrally managed through a web based console, AlertBoot offers mobile device management, mobile antivirus, remote wipe & lock, device auditing, USB drive and hard disk encryption managed services.

USB Drive Encryption: UK Rochdale Council Breach Affects 18,000

Rochdale Metropolitan Borough Council has been reprimanded by the UK's Information Commissioner's Office (ICO) for the loss of a USB drive.  The device contained personal information and was not guarded with data encryption software like AlertBoot.

18,000 Affected

The missing device contained names, addresses, and council payment details.  Bank account details and other data were not included.  The information was used to "compile the council's financial accounts" according to publicservice.co.uk.

A subsequent investigation by the ICO also found that the council had failed on many fronts when it comes to data protection.  As stated previously, the encryption software was not used to secure the USB memory stick.  As it turns out, the USB device was given to out to its staff, so the council has no one but itself to blame for the breach.

Furthermore, it was revealed that employees did not receive adequate data security training.  Rochdale Council has until March 2012 to implement promises as detailed in the Undertaking they signed.

The council is already using encrypted USB sticks, according to rochdaleonline.co.uk.

Too Little, Too Late

Did you know that the ICO does not have the power to perform audits?  It can audit central government departments, but other sectors, such as the NHS and the private sector are off-limits.  Local government, such as the Rochdale Council above, are off-limits, too.  This despite the fact that most breaches come from these areas.

You can expect the "breach first, encryption second" scenario playing out as long as nobody's overseeing the situation.


Related Articles and Sites:
http://www.publicservice.co.uk/news_story.asp?id=17914
http://www.guardian.co.uk/government-computing-network/2011/nov/03/rochdale-council-memory-stick-ico?newsfeed=true
http://www.v3.co.uk/v3-uk/news/2122401/rochdale-council-loses-residents-details-unencrypted-usb

 
<Previous Next>

Disk Encryption Software: Warren County Community College Laptop Theft (Updated)

HIPAA / HITECH And Business Associates: 20% Of All Public Breaches

Comments

No Comments

About sang_lee

Sang Lee is a Senior Account Manager and Security Analyst with AlertBoot, Inc., the leading provider of managed endpoint security services, based in Las Vegas, NV. Mr. Lee helps with the deployment and ongoing support of the AlertBoot disk encryption managed service. Prior to working at AlertBoot, Mr. Lee served in the South Korean Navy. He holds both a B.S. and an M.S. from Tufts University in Medford, Massachusetts, U.S.A.