Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
Backup tapes containing unencrypted personal information of nearly five million current and former US soldiers were stolen from a defence contractor.
The data on the backup tapes belonged to Tricare, a US health benefits provider for military personnel, retirees and their dependents.
It was swiped from a car owned by an employee of Science Applications International Corp. (SAIC), a high-tech defense contractor meant to safeguard the data.
The stolen records affect 4.9 million people who, from 1992 to Sept. 7 of this year, sought care at military treatment facilities in Texas.
The data included social security and phone numbers, addresses and clinical information including notes, lab test reports and prescription information.
The high tech defence contractor said the data was unencrypted because it lacked the capability to do to in line with US Government standards.
It said retrieval of the data was unlikely because doing so "requires knowledge of and access to specific hardware and software, and knowledge of the system and data structure".
"The government was seeking a compliant encryption solution that would work with the operating system when the backup tapes were taken," the company said.
It took Tricare two weeks to reported 14 Septemeber theft.
"We did not want to raise undue alarm in our beneficiaries and so wanted to determine the degree of risk this data loss represented before making notifications."
Representatives from SAIC and Tricare did not immediately respond to a request for comment.
This article originally appeared at scmagazineus.com
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.