TSA widens test of biometric
IDs. The U.S. government is spending $25 million this fiscal year
to road test a universal secure identity card loaded with biometric and personal data and
tied to government "watch lists." Though the program is aimed at simplifying the
security checks that airport personnel and other transportation workers must go through,
privacy experts are warning of unintended consequences.
Slippery Frogs and the US Supreme
Court: The more information we freely give up, the more information will be demanded of us,
and probably demanded at some near-future time by force of law.
'Problem
driver' database flawed. A federal database of more than 40 million "problem drivers"
contains hundreds of thousands of phony Social Security numbers, a new report says. The U.S. Department
of Transportation's Office of Inspector General estimates there are more than 600,000 invalid Social Security
numbers — such as 111-22-3333 and 222-33-4444 — in the National Driver Registry.
The database also contains about 161,000 duplicate numbers in which different drivers are using the same
Social Security information.
Research Explores Data Mining,
Privacy. As new disclosures mount about government surveillance programs, computer science
researchers hope to wade into the fray by enabling data mining that also protects individual privacy.
Largely by employing the head-spinning principles of cryptography, the researchers say they can ensure that
law enforcement, intelligence agencies and private companies can sift through huge databases without seeing
names and identifying details in the records.
Federal Data-Sharing Program Raises Student
Privacy Concerns. On September 1, The New York Times, USA Today, and other media outlets
reported a student at Northwestern University's Medill School of Journalism, working with The Associated
Press, had uncovered a little-known data-sharing program conducted by the FBI and U.S. Department of
Education. The program was disbanded shortly after the story broke.
Personal details of
84,000 prison inmates lost in security blunder. The personal details of the entire prison population
south of the Border have been lost in a massive security breach at the Home Office, it was revealed last night.
Information on tens of thousands of criminals — including expected release dates — was lost
while private contractors hired by the government were transferring files between computers.
Personal
data of a million bank customers found on computer sold on eBay for £35. The Mail Source
employee sold the computer to Andrew Chapman, a 56-year-old IT manager from Oxford. It held account
numbers, phone numbers, signatures and other personal details, none of which are thought to have been handed
to any third parties.
FBI's Gun
Ban Listing Swells. Since the Virginia Tech shootings last spring, the FBI has more than doubled
the number of people nationwide who are prohibited from buying guns because of mental health problems, the
Justice Department said yesterday. Justice officials said the FBI's "Mental Defective File" has
ballooned from 175,000 names in June to nearly 400,000, primarily because of additions from California.
HIPAA, Guns, and
Public Health. Now, most of us assume such sensitive health records are protected in the
interest of "privacy." Isn't that what we've been assured by HIPAA? So what's the loophole that
permits the feds access to sensitive hospital records to make their lists? What if I had an anxiety
disorder or depression in my medical history requiring inpatient admission. Would I end up on the
FBI's "Mental Defective File?"
More States Adding Mental Health Records to
FBI Database. States have doubled the number of mental health records submitted to the FBI's
background-check system since the Virginia Tech shooting last April, in a stepped up effort to keep mentally
disturbed individuals from purchasing firearms.
200,000 medical records sent to wrong patients,
some with SSNs. BC&BS sent an estimated 202,000 benefits information letters containing personal
and health information — identities, ID numbers, and service details — to the wrong
addresses last week, Some letters also contained SSNs.
11 Charged in Theft
of 41 Million Card Numbers. Federal prosecutors have charged 11 people with stealing more
than 41 million credit and debit card numbers, cracking what officials said on Tuesday appeared to
be the largest hacking and identity theft ring ever exposed.
USDA Announces Hacker Stole D.C. Area
Employee Database. A hacker broke into the Agriculture Department's computer system and may
have obtained names, Social Security numbers and photos of 26,000 Washington-area employees and contractors,
the department said Wednesday [6/21/2006].
Data lost for J.C. Penney, other
retailers' card customers. Personal information on about 650,000 customers of J.C. Penney and up
to 100 other retailers could be compromised after a computer tape went missing. GE Money, which handles
credit card operations for Penney and many other retailers, said Thursday night [1/17/2008] that the missing
information includes Social Security numbers for about 150,000 people.
Credit card data stolen from supermarket
chain. A computer hacker stole thousands of credit card numbers after breaching security at two U.S.
grocery store chains owned by Belgium-based Delhaize Group SA, the companies said on Monday [3/17/2008]. Nearly
2,000 cases of fraud have been linked to the breach….
Lost DOT Laptops: Compromised Personal
Data? A series of data breaches at agencies under the United States Department of Transportation
has put the Personal Identification Information of at least 133,000 people at risk. According to
information WTOP obtained through the Freedom of Information Act, since 2001, the DOT has lost nearly 400
laptop computers and had nine instances when Personal Identification Information was lost or stolen.
IRS: Kansas City lost our
tapes. A federal investigation of missing Internal Revenue Service tapes from
City Hall in Kansas City has concluded that the city failed to follow 'proper safeguards for
protecting federal tax return information.' … The IRS has never said what information was on
the tapes, how many taxpayers were affected, or whether those taxpayers would ever be notified
about the missing information.
1,100
Laptops Missing From Commerce Dept. More than 1,100 laptop computers have vanished from
the Department of Commerce since 2001, including nearly 250 from the Census Bureau containing such
personal information as names, incomes and Social Security numbers, federal officials said
yesterday [9/21/2006].
More "lost laptop" cases like this are filed
under Uncle Sam loses stuff.
AT&T hack exposes 19,000 identities.
AT&T on Tuesday [8/29/2006] said hackers broke into one of its computer systems and accessed personal data on
thousands of customers who used its online store.
State
Street: Data stolen from vendor. State Street Corp. said yesterday [5/29/2008] that a disk drive
containing personal details from 5,500 employees and 40,000 customer accounts was stolen from the office of another firm
hired for data analysis. The incident could leave individuals open to identity theft and is the latest example to
show how financial companies can be vulnerable to the physical loss of devices storing information, no matter how
strong their online safeguards.
Ohio hires expert to review data theft.
The state has hired a computer security expert to determine the likelihood of someone getting access to the data
on a stolen backup storage device, Gov. Ted Strickland said Sunday. … Previously, it was revealed the device
contained the names and Social Security numbers of all 64,000 state employees, as well as information about
53,797 people enrolled in the state's pharmacy benefits management program and the names and Social Security
numbers of about 75,532 dependents.
AOL
Proudly Releases Massive Amounts of Private Data. AOL must have missed the uproar over the
DOJ's demand for "anonymized" search data last year that caused all sorts of pain for Microsoft and
Google. That's the only way to explain their release of data that includes 20 million web
queries from 650,000 AOL users. The data includes all searches from those users for a three month
period this year, as well as whether they clicked on a result, what that result was and where it appeared
on the result page.
E-Mail
Gaffe Publicizes Job Seekers in Albany. Gov. Eliot Spitzer made his name, in part, on indiscreet
e-mail messages, as any number of executives who were pursued by the attorney general's office in recent years
can attest. Now his administration has sent out an indiscreet e-mail message of its own: An e-mail
response to people seeking jobs as spokesmen included the e-mail addresses of 227 other job applicants,
including reporters and local and city government employees.
Sailors' Data Posted on the
Web. The Navy has begun a criminal investigation after Social Security numbers and other personal
data for 28,000 sailors and family members were found on a civilian Web site.
One Click Leads to 20 Years of Your
Info. Ray Schabell recently logged on to a popular people-search Web site, and was surprised to
learn just how much personal information about himself was available with a couple of mouse clicks.
Energy
Department Discloses Data Theft. A hacker stole a file containing the names and Social Security
numbers of 1,500 people working for the Energy Department's nuclear weapons agency. But the incident
last September, somewhat similar to recent problems at the Department of Veterans Affairs, was not reported
to senior officials until two days ago, officials told a congressional hearing yesterday [6/9/2006]. None
of the victims was notified, they said.
IRS Laptop Lost With Data on 291
People. An Internal Revenue Service employee lost an agency laptop early last month that
contained sensitive personal information on 291 workers and job applicants, a spokesman said yesterday
[6/10/2006]. The IRS's Terry L. Lemons said the employee checked the laptop as luggage aboard a
commercial flight while traveling to a job fair and never saw it again. The computer contained
unencrypted names, birth dates, Social Security numbers and fingerprints of the employees and applicants,
Lemons said.
College
Door Ajar for Online Criminals. Since January, at least 845,000 people have had sensitive
information jeopardized in 29 security failures at colleges nationwide. In these incidents, compiled
by identity theft experts who monitor media reports, hackers have gained access to Social Security
numbers and, in some cases, medical records.
Laptop Stolen
From D.C. Home. A laptop containing personal data — including Social Security
numbers — of 13,000 District workers and retirees was stolen Monday from the Southeast Washington
home of an employee of ING U.S. Financial Services, the company said yesterday. ING, which administers
the District's retirement plan, known as DCPlus, notified the city about the theft late
Friday [6/16/2006].
VA Official Steps Down After Data
Theft. A Veteran Affairs deputy assistant secretary who didn't immediately notify top officials
about a theft of 26.5 million veterans' personal information is stepping down, citing missteps that led
to the security breach.
Government
hit by rash of data breaches. The government agency charged with fighting identity theft said
Thursday [6/22/2006] it had lost two government laptops containing sensitive personal data, the latest in a
series of breaches encompassing millions of people.
Experts
to form ID theft research center. An alliance of businesses, colleges and federal crime fighters will
combine their expertise at a new research center that will study the problems of identity theft and fraud.
Big Brother's Database: Under the guise of crime
prevention, the government is creating databases to track your every move, and stripping what is left of
your privacy.
Data theft hit 80 percent of active military.
Social Security numbers and other personal information for as many as 2.2 million U.S.
military personnel — including nearly 80 percent of the active-duty force — were among the
data stolen from the home of a Department of Veterans Affairs analyst last month, federal officials said
yesterday [6/5/2006], raising concerns about national security as well as identity theft.
Unlicensed Fraud: How bribery and lax
security at state motor vehicle offices nationwide lead to identity theft and illegal driver's
licenses. [PDF file]
Boston College reveals
alumni data breach. Boston College is fighting against an attack on its
fund-raising databases, which may have exposed the personal data of more than 100,000 alumni.
Personal Identification Is Too
Important to Be Run by Government: When showing your card is required before you can board a
plane, rent a car, use the library, get a phone, buy a gun, enter the US, leave the US, buy a house, get a
loan, see the doctor, buy medicine, or enroll your child in school, the opportunities for "denial of
service" against those of whom the state does not approve are chilling indeed.
Pentagon Creating Student
Database. The Defense Department has begun working with BeNow Inc, a private
marketing firm, to create a database of high school students ages 16 to 18 and all college
students to help the military identify potential recruits in a time of dwindling enlistment
in some branches. The program is provoking a furor among privacy advocates.
USC admissions site
cracked wide open. A programming error in the University of Southern California's
online system for accepting applications from prospective students left the personal information
of users publicly accessible, school officials confirmed this week.
I'm Sorry, Dave,
You're Speeding. While Toyota views its [Australian] concept car as nothing
more than a showcase for cool gizmos, its electronic logging functions would creep into
everyday life, giving more surveillance powers to the government, critics say. Some
are equally concerned at the card required to operate it, saying it's a
national ID in disguise.
Central Data Banks and American
Justice: A case in point is a New Hampshire woman who was arrested, handcuffed,
and had her car impounded for not returning a late rental video!
Bill Would Close Gun Law
Holes: Sen. John McCain, R-Ariz., introduced legislation Tuesday [7/30/2002] to close major
gaps in the federal firearms background check system that in a 30-month period allowed some
10,000 felons and others prohibited from gun ownership to obtain weapons. McCain said the hole
is the "faulty records of the National Instant Criminal Background Check System (NICS)."
Editor's Note:
There you have another example of a government bureaucracy with faulty records. Please
keep this in mind when the National ID Card debate gets underway. Here
is another example...
30,000 personal
records stolen in GMU server compromise. The server at George Mason
University in Virginia was compromised by crackers who stole personal
information ("names, photos, Social Security numbers and [campus ID] numbers
of all members of the Mason community who have identification cards") on
30,000 students, faculty, and staff.
Top
10 List of Police Database Abuses: Your address, telephone number,
Social Security number, date of birth, criminal record -- all this data and more
can be accessed by police officers if they have basic information about you. Some
cops, however, use their database access for less-than-honorable reasons. Some
cops used police databases to harass exes and even get telephone numbers of
women they see in cars.
Part 1 of 2: Medical "Privacy"
Regulations Destroy Privacy: Federal privacy regulations issued by the Clinton administration
on Dec. 28, 2000, and adopted by the Bush administration on April 14, 2001, perpetrate a fraud on the American
people, proclaiming privacy as their goal when ever-wider access to individual medical records is their
actual and intended effect.
Part 2 of 2: Medical "Privacy"
Rules Advance a National ID: Why should ordinary people bother to read the medical privacy
rules anyway? Media and government sources continue to assert the benign nature of the new regulations,
which are said to promise cost savings through database standardization along with protection of people's
medical privacy. Why be concerned?
2,000 patients hit by lab
test mix-up. An Internet database – which physicians use to
view lab work such as blood and urine tests – mixed up results between
patients and posted records under the wrong names.
Information system for
Lisbon hospitals stopped for ten days. Lisbon newspaper "O Público" reports
that the main information system for the Lisbon Hospital Center, which supports three large
Lisbon hospitals, has not worked since July 8. It appears that the master patient
index has become inaccessible, and may be lost. … The waiting list for surgery also
appears lost, although that has not been confirmed.
This is for all the people who believe
anything that pops up on a computer screen:
The Risky Business of
Spreadsheet Errors. Spreadsheets create an illusion of orderliness, accuracy, and
integrity. The tidy rows and columns of data, instant calculations, eerily invisible updating,
and other features of these ubiquitous instruments contribute to this soothing impression. At
the same time, faulty spreadsheets and poor spreadsheet practices have been implicated in a wide
variety of business and financial problems.
Privacy Advocates Fear National
ID Scheme: State motor vehicle agencies are working on a plan to create a national driver's
license by using state agreements, possibly backed by federal law, that could end-run civil rights and
political opponents.
Related item:
Impact of
Artificial "Gummy" Fingers on Fingerprint Systems.
Photo finish: A proposed
"private" database of driver's license photos turns out to have federal funding and backing.
"Smile for the US Secret
Service": Image Data is purchasing driver's license photos for the USSS.
|
|
