Language Selection

English French German Italian Portuguese Spanish

FDIC latest to fall victim to theft of employee data

Filed under
Security

In a letter to current and former FDIC workers obtained by GCN, Arleas Upton Kea, director of the agency's administration division, said that in early 2004 someone accessed current and former employee personal data without authorization. That data includes name, date of birth, salary, Social Security number and length of service.

Officials discovered the problem in March and sent letters to those affected. In the subsequent investigation, the FBI found that data of all FDIC employees and former employees has been stolen. The FBI, which would not comment on the investigation, alerted FDIC June 9, and Kea sent the letter June 10.

FDIC's inspector general also is investigating the crime. "The case still is under investigation," said a FDIC spokesperson. "There is not a lot we can say at this point."

The spokesperson confirmed that no one hacked into the agency's system but wouldn't say how the data was stolen except that it was not similar to the Bank of America situation in February. Bank of America lost back-up tapes containing data on 1.2 million federal employees.

FDIC is asking former and current employees to check their credit reports over the next 12 to 24 months for suspicious activity.

News of FDIC's security breach comes as Congress is considering a number of laws that would require immediate notification when personal data is lost. Sen. Dianne Feinstein (D-Calif.), a sponsor of one of those bills, testified yesterday before the Senate Commerce Committee.

Feinstein told the committee that "data breaches and identity theft [are] national problems that require a federal solution. One strong notification standard is what we need, not a patchwork of state laws like we are beginning to see in California, Arkansas, Georgia, Indiana, Montana, North Dakota and Washington state."

The senator's bill would require federal agencies and private-sector companies to notify individuals "without unreasonable delay" if their personal data is lost or stolen, unless law-enforcement officials say it would impede their investigation.

Along with Feinstein, Sen. Charles Schumer (D-N.Y.) and Rep. Ed Markey (D-Mass.) are among those who have introduced identity theft bills over the past few months.

Source.

More in Tux Machines

OSS Leftovers

  • DataBasin - object inspector and updates
    First, the underlying DataBasinKit framework got an important update.
  • In-demand dev skills, understanding licensing, and more open source news
  • Higher ed systems expanding access to open-source materials
    Open-source learning technology is at the core of higher education for institutions that want to reach broader audiences with very strict ideas about how convenient learning should be. But developing these initiatives does not happen quickly or easily. It requires strong leadership in information technology, expertise to determine which solutions work best for a campus, and a financial commitment to making sure the technology is sustainable.
  • Proxmark Pro Proxmark3 Standalone Open Source RFID Tester (video)
    Rysc Corp has unveiled a new open source board in the form of the Proxmark Pro which now offers a true standalone client and RFID test instrument, check out the video below to learn more. The Proxmark Pro will feature an FPGA with 5 times the logic cells of the Proxmark3 and will remove the need to switch between HF and LF bit streams during operation, to use developers.
  • ErupteD Brings Vulkan To The D Programming Language
    The D programming language is just the latest to have support for Vulkan alongside C++, Rust (via Vulkano, if you missed that project), Go, and many other modern languages getting bindings for this Khronos Group high performance graphics API. Should you not be familiar with the D language, see Wikipedia.

Leftovers: Security