Tuesday, June 24, 2008

Fraud Flash for the week of June 23, 2008

June 15, 2008
Conn. Department of Administrative Services (Hartford, CT) http://www.hartfordbusiness.com/news5756.html
Department of Administrative Services posted the Social Security numbers of individual contractors on a state Web site. An audit also uncovered the Social Security numbers of prospective nursing employees accessible on an agency Web site for 19 months until a complaint was lodged.

June 13, 2008
Texas Insurance Claims Services (Dallas, TX) http://cbs11tv.com/local/Life.Time.Fitness.2.505211.html
Hundreds of files with people's names, Social Security numbers and policy numbers were found in a Richardson dumpster.

June 12, 2008
Columbia University (New York, NY)
A student employee had posted a database of students' housing information on a Google-hosted Web site. Their Social Security numbers had been searchable online for the last 16 months.

June 11, 2008
Dickson County Board of Education (Dickson, TN) http://www.wztv.com/newsroom/top_stories/vid_1944.shtml
A computer containing sensitive personal was stolen from the Dickson County Board of Education. The computer belongs to the new director of schools and was loaded with the name and Social Security number of every school employee from the 2006-2007 school year, a total of 850.

June 10, 2008
Wheeler's Moving Company (Boca Raton, FL) http://www.wflxfox29.com/Global/story.asp?S=8416813
Personal files with tax information, Social Security numbers and license numbers, were found in a Boca Raton dumpster.

University of Florida (Gainesville, FL)
Current and former students had their Social Security numbers, names and addresses accidentally posted online. The information became available when former student employees of the Office for Academic Support and Institutional Service, or OASIS, program created online records of students participating in the program between 2003 and 2005.

University of Utah Hospitals and Clinics (Salt Lake City, UT)
Billing records of 2.2 million patients at the University of Utah Hospitals and Clinics were stolen from a vehicle after a courier failed to immediately take them to a storage center. The records, described only as backup information tapes, contained Social Security numbers of 1.3 million people treated at the university over the last 16 years.

1st Source Bank (South Bend, IN)
1st Source Bank is replacing ATM cards this month for all its account holders after cyber-thieves accessed an unknown amount of debit-related data.

June 9, 2008
University of South Carolina (Columbia, SC) http://www.thestate.com/breaking/story/428754.html
Several items were stolen from an office in the Moore School of Business. Among the items was a desktop computer. As a result of the computer being stolen, it is possible that some personally identifiable data could have been compromised.

June 7, 2008
East Tennessee State University (Johnson City, TN) http://www.timesnews.net/article.php?id=9006771
6,200 people may have had their identities compromised by the theft of a desktop computer. The computer is password protected and files cannot be easily accessed. But there is a small possibility that the information could be compromised.

Southington Water Department (Southington, CT)
Documents with the names and Social Security numbers of 26 people were found scattered by the Quinnipiac River.

June 6, 2008
Stanford University (Stanford, CA) http://news-service.stanford.edu/news/2008/june11/laprelease-061108.html
Stanford University determined that a university laptop, which was recently stolen, contained confidential personnel data. The university is not disclosing details about the theft as an investigation is under way.

June 4, 2008
Oregon State University (Corvallis, OR)
The Oregon State Police are investigating the theft of personal information from online customers of the OSU Bookstore who used credit cards to purchase items.

June 2, 2008
Walter Reed Army Medical Center (Washington, D.C.)
Sensitive information on patients at Walter Reed Army Medical Center and other military hospitals was exposed in a security breach. The computer file that was breached did not include information such as medical records, or the diagnosis or prognosis for patients, but may have included names, Social Security numbers, birth dates as well as other information.

No comments: