Jump to content

Yay data leakage!


Signal Hacker
 Share

Recommended Posts

So, for the third or fourth time in two or three years, I get a letter from my state's National Guard (not the state I live in, so Illinois is off the hook) telling me that YET AGAIN they've lost a ton of Soldiers' data! :lol: YAY!

And it was the exact same fuggin' situation as the last two or three..........some dipsh*t who works for the Guard or DFAS (Defense Finance and Accounting Service) went home with his company laptop, left it in his car overnight, and someone ganked it.

Especially funny that I got this letter right after watching the Hak5 episodes on hard drive encryption and cold boot attacks.

The letter doesn't go into any technical detail, just tells me my data (and that of most of the other commissioned officers in this state's National Guard) was on the stolen device, put fraud alerts on your credit report, etc. etc. etc.

How many times is this shot of shite going to happen before they just outright ban employees from taking laptops home!?!? I'm not aware of anyone in the NG who works from home, anyway. I just hope to God they encrypt all their devices' hard drives. I have drill this weekend and my company commander is a full-time sysadmin for the Guard, so I'll try to find out.

In the meantime, hope nobody's out buying a house in my name...

Link to comment
Share on other sites

So, for the third or fourth time in two or three years, I get a letter from my state's National Guard (not the state I live in, so Illinois is off the hook) telling me that YET AGAIN they've lost a ton of Soldiers' data! :lol: YAY!

And it was the exact same fuggin' situation as the last two or three..........some dipsh*t who works for the Guard or DFAS (Defense Finance and Accounting Service) went home with his company laptop, left it in his car overnight, and someone ganked it.

Especially funny that I got this letter right after watching the Hak5 episodes on hard drive encryption and cold boot attacks.

The letter doesn't go into any technical detail, just tells me my data (and that of most of the other commissioned officers in this state's National Guard) was on the stolen device, put fraud alerts on your credit report, etc. etc. etc.

How many times is this shot of shite going to happen before they just outright ban employees from taking laptops home!?!? I'm not aware of anyone in the NG who works from home, anyway. I just hope to God they encrypt all their devices' hard drives. I have drill this weekend and my company commander is a full-time sysadmin for the Guard, so I'll try to find out.

In the meantime, hope nobody's out buying a house in my name...

If I were you, I'd inquire why it was necessary for your data to leave the office.

Regardless of the stolen device, why is it justified that that individual needed to have your info on his laptop to take home?

They may have a reason, but I suspect it will be pretty wack.

Link to comment
Share on other sites

90% of the reason that people "need" company laptops at home is because they are to cheap to buy there own. I see this all the time, especially with people who earn large amounts of money.

Link to comment
Share on other sites

VaKo is right. That mixed with pure stupidity, is the reason why shit like this happens.

I work for a Casino. I see money/credit cards (big and small limits), personal info, etc. all the time.

There is a huge rule about laptops at my place of work.

*you dont bring one in, and you dont take one out*

Seems my place of work is tighter than the military...

Link to comment
Share on other sites

GREAT points, all of you! There are absolutely NO good reasons this data should be going home with NG employees.

Vako, you're right on the mark about the reasons why these users are taking laptops home with them.

Sure, it's just a Guard laptop, so identity theft is the worst risk. But it's still scary to think this sort of thing has happened multiple times in just a few years with MILITARY laptops!

Link to comment
Share on other sites

Also, the average laptop user isn't savvy enough to know how to use a VPN, or other types of remote access without proper training. But then again it's NOT THAT HARD FFS.

EVEN MY MOTHER (mother jokes need not apply :P) knows how to remote in securely to her workplace.

And for Christ sakes, it's like you said THE MILITARY..they should encrypt their HDs, train their people in secure IT practices, even if it's high level stuff so that people are more aware. God forbid they won't be subject to such stupidity on a regular basis.

/rant

Link to comment
Share on other sites

Join the conversation

You can post now and register later. If you have an account, sign in now to post with your account.

Guest
Reply to this topic...

×   Pasted as rich text.   Paste as plain text instead

  Only 75 emoji are allowed.

×   Your link has been automatically embedded.   Display as a link instead

×   Your previous content has been restored.   Clear editor

×   You cannot paste images directly. Upload or insert images from URL.

 Share

  • Recently Browsing   0 members

    No registered users viewing this page.

×
×
  • Create New...