Ameritrade warns 200,000 clients of lost data
Gee, what a surprise -- another one: http://www.msnbc.msn.com/id/7561268/ Anyone wanna bet that tomorrow, this number will have grown "after further examination"...? - ferg -- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg@netzero.net or fergdawg@sbcglobal.net ferg's tech blog: http://fergdawg.blogspot.com/
"A total of four backup tapes were found to be missing from a box that was damaged during shipping between two facilities, the company said. Three of the four tapes have been recovered at the shipper's facility. So, who else thinks that this is some sort of criminal negligence, puting that kind of sensitive information in such a risky position? I think that these conpanies (lexis nexis, ameritrade, whoever) should be held *criminally* liable for things like this. How long until something like the social security administration has an announcement like this? Or, Experian? Transunion? D&B? On Tue, 19 Apr 2005, Fergie (Paul Ferguson) wrote:
Gee, what a surprise -- another one:
http://www.msnbc.msn.com/id/7561268/
Anyone wanna bet that tomorrow, this number will have grown "after further examination"...?
- ferg
-- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg@netzero.net or fergdawg@sbcglobal.net ferg's tech blog: http://fergdawg.blogspot.com/
-- Alex Rubenstein, AR97, K2AHR, alex@nac.net, latency, Al Reuben Net Access Corporation, 800-NET-ME-36, http://www.nac.net
On Tue, 2005-04-19 at 15:44 -0400, Alex Rubenstein wrote:
I think that these conpanies (lexis nexis, ameritrade, whoever) should be held *criminally* liable for things like this.
How long until something like the social security administration has an announcement like this? Or, Experian? Transunion? D&B?
This problem is made more intractable by not being able to reassign identifiers, such as your social security number, or your drivers license. If the Federal government were to provide a national ID that was 15 digits randomly assigned, and would associate with a name for confirmation. Once the number/name is shown to be abused, allow the individual to obtain a different number. The Feds would return MATCH, ABUSED, or INVALID on an ID query. Even guessing a valid number would be right once every 3 million guesses. Also checking against the name would make this rather difficult to abuse. Offering an ABUSED ID would be grounds to summon the authorities. By allowing the individual to report their number as being abused and having it reassigned, would make catching criminals that use purloined data far easier. -Doug
And, to follow up to me previous: http://www.msnbc.msn.com/id/7549496 On Tue, 19 Apr 2005, Fergie (Paul Ferguson) wrote:
Gee, what a surprise -- another one:
http://www.msnbc.msn.com/id/7561268/
Anyone wanna bet that tomorrow, this number will have grown "after further examination"...?
- ferg
-- "Fergie", a.k.a. Paul Ferguson Engineering Architecture for the Internet fergdawg@netzero.net or fergdawg@sbcglobal.net ferg's tech blog: http://fergdawg.blogspot.com/
-- Alex Rubenstein, AR97, K2AHR, alex@nac.net, latency, Al Reuben Net Access Corporation, 800-NET-ME-36, http://www.nac.net
participants (4)
-
Alex Rubenstein -
Douglas Otis -
Fergie (Paul Ferguson) -
Florian Weimer