Language Selection

English French German Italian Portuguese Spanish

Citigroup Says UPS Lost Data

Filed under
Security

Citigroup Inc. on Monday said computer tapes containing account and payment history data, including Social Security numbers, on 3.9 million customers were lost by United Parcel Service Inc.

he disappearance is the latest in a series of reported data breaches involving U.S. companies, including Bank of America Corp. and Time Warner Inc.

New York-based Citigroup said UPS, the world's biggest package carrier, lost the tapes while shipping them to an Experian credit bureau in Texas.

The tapes covered CitiFinancial branch network customers and about 50,000 customers with closed accounts from CitiFinancial Retail Services. Customers of CitiFinancial Auto and CitiFinancial Mortgage are unaffected.

Citigroup, the world's biggest bank, on Saturday mailed a letter to customers about the problem. It said it has received no reports of unauthorized activity, and said there is "little risk" of the accounts being compromised.

"We were moving this using an enhanced security procedure we specified and developed with (UPS)," said Kevin Kessinger, president of Citigroup's North America consumer finance unit, in an interview. "You can imagine how frustrated and disappointed we are that this occurred."

Norman Black, a spokesman for Atlanta-based UPS, said "we sincerely regret that in this case we have not been able to find this package. We did conduct an exhaustive search."

Black said UPS is cooperating with Citigroup, and will "do everything we can to make sure this doesn't happen again."

Full Story.

Just Bull

I think the US Goverment is behind this data theft so they can take away more of our freedoms. They already snuck in a National ID card in a Iraq funding bill. They gonna make us all get chipped with RFID so they can keep track of us someday. Big Brother sucks. Im going to my cabin on the mountain soon.

re: Just Bull

Wouldn't doubt it, but it's probably more like an employee in this case making a quick buck selling it to whomever pays for info like that.

----
You talk the talk, but do you waddle the waddle?

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

Android Leftovers

Red Hat: Patent 'Promise', Proprietary 'Gifts', Imminent Results, Fedora 27 Delays

  • Red Hat pledges patent protection for 99 per cent of FOSS-ware [Ed: And when Red Hat gets taken over (like Sun and Oracle) this promise will be worthless]
    Red Hat says it has amassed over 2,000 patents and won't enforce them if the technologies they describe are used in properly-licensed open source software. The company's made more or less the same offer since the year 2002, when it first made a “Patent Promise” in order to “to discourage patent aggression in free and open source software.” In 2002 the company didn't own many patents and claimed its non-enforcement promise covered per cent of open source software. The Promise was revised in order to reflect the company's growing patent trove and to spruce up the language it uses to make it more relevant. The revised promise “applies to all software meeting the free software or open source definitions of the Free Software Foundation (FSF) or the Open Source Initiative (OSI)”. That verbiage translates into any software licensed on terms the OSI approves on this list, or which meet the Initiative’s definition of open source offered here. Licenses listed by the Free Software Foundation as a free software license at https://www.gnu.org/licenses/license-list.html#SoftwareLicenses also come under the Promise's purview, as do those here as of the date this edition of Our Promise is published.
  • Red Hat Open Source Day rewards with proprietary hardware. For the fourth time
    The above is an excerpt of the 2017 event announcement. Which, as you can see below, will be at least the fourth consecutive one in which Red Hat Italia will award participants with some of the most proprietary devices around. Please note the absence of anything like, e.g. Matchstick, “100% Linux compatible laptop, with Linux preinstalled”, or a Fairphone, in the screenshots...
  • Red Hat (RHT) to Report Q2 Earnings: Will it Beat Estimates?
    We expect Red Hat Inc. RHT to beat expectations when it reports fiscal second-quarter 2018 results on Sep 25.
  • Needle Action Activity Spotted in Enbridge Inc (ENB) and Red Hat Inc (RHT)
  • Fedora 27 Beta Hit By A Second Delay
    Last week it was decided to delay the Fedora 27 beta due to bugs while this week they've been forced to delay the release a second time. The first beta delay wasn't too bad as the F27 schedule already had a built-in "rain date", in acknowledging Fedora's frequent release delays. But today a second unplanned delay is pushing back F27 Beta by at least one more week. This will now also push back the Fedora 27 final release by at least one week.
  • Fedora 27 Beta status is NO-GO
  • News: The new Krita 3.3.0

Security: Apple's Betrayal, Intel ME Back Doors Backfire, and Optionsbleed

  • iOS 11 Muddies WiFi and Bluetooth Controls
    Turning WiFi and Bluetooth off is often viewed as a good security practice. Apple did not rationalize these changes in behavior.
  • How To Hack A Turned-Off Computer, Or Running Unsigned Code In Intel Management Engine
    Intel Management Engine is a proprietary technology that consists of a microcontroller integrated into the Platform Controller Hub (PCH) microchip with a set of built-in peripherals. The PCH carries almost all communication between the processor and external devices; therefore Intel ME has access to almost all data on the computer, and the ability to execute third-party code allows compromising the platform completely. Researchers have been long interested in such "God mode" capabilities, but recently we have seen a surge of interest in Intel ME. One of the reasons is the transition of this subsystem to a new hardware (x86) and software (modified MINIX as an operating system) architecture. The x86 platform allows researchers to bring to bear all the power of binary code analysis tools.
  • Optionsbleed: Don’t get your panties in a wad
    To be honest, this isn’t the first security concern you’ve run in to, and it isn’t the first security issue you’re vulnerable to, that will remain exploitable for quite some time, until after someone you rely on fixed the issue for you, meanwhile compromising your customers. [...] Is it a small part of the SSL public key? A small part of the web request response? A chunk of the path to the index.php? Or is it a chunk of the database password used? Nobody knows until you get enough data to analyse the results of all data. If you can’t appreciate the maths behind analysing multiple readings of 8 arbitrary bytes, choose another career. Not that I know what to do and how to do it, by the way.

OSS: Puppet Acquires Distelli, Mozilla Adds Tracking Protection, Fake List of Open Source Companies, and Open Source Summit

  • Puppet Acquires Distelli, Boosting Its Cloud Automation Offerings
    Puppet, the open source company that markets cloud-native software management tools, has acquired startup Distelli. Based in Seattle, Distelli offers a software as a service platform used by developers to build, test, and deploy code written in any language to any server, including cloud platforms. This is an obvious good match, as both platforms enable developers to manage infrastructure and applications across the entire software delivery process to make app development quicker. "Today, a company's success is predicated on how quickly and successfully it can deliver new experiences to customers through software," Puppet's CEO, Sanjay Mirchandani, said in a statement. "Automation makes world-class application delivery straightforward for every enterprise, not just for companies born in the cloud. Together with Distelli, we are bringing a comprehensive solution for orchestrating and automating the entire software delivery lifecycle, from infrastructure, all the way up through containers."
  • Mozilla Adds Tracking Protection to Firefox for iOS, Focus Gets Multitasking
    Mozilla released on Thursday new updates for its Firefox for iOS and Firefox Focus for Android apps adding new features like tracking protection and multi-tasking, along with various other improvements. Firefox for iOS has been updated today to version 9.0, a release that's available on the App Store for iPhone, iPad, and iPod touch devices running iOS 10.3 or later. It comes with support for Apple's recently launched iOS 11 operating system, as well as tracking protection, which is enabled by default in the private browsing mode to automatically block third-party trackers in an attempt to increase browsing speed.
  • 35 Top Open Source Companies [Ed: Easy to see that this list will be a 'scam' when the company listed in number one is Adobe. It has even listed Black Duck as "Open Source Company". It’s PROPRIETARY and ANTI-FOSS.]
  • Open Source Summit in Los Angeles: Day 1 in 5 Minutes
    Open Source Summit North America in Los Angeles was packed with keynotes, technical sessions, and special presentations, including a conversation with Linux creator Linus Torvalds. In case you couldn't make it, CodePop.com's Gregg Pollack has put together some short videos recapping highlights of the event.