Investigation revives data security debate eight months after a similar incident involving a stolen laptop.
A hard drive containing nearly 50,000 veterans' identities may have been stolen, the Department of Veterans Affairs said Friday, a deja vu moment for the federal agency that lost millions of records in a home burglary in 2006.
The FBI and the department's own inspector general are investigating, said Secretary Jim Nicholson. "We intend to get to the bottom of this, and we will take aggressive steps to protect and assist anyone whose information may have been involved," Nicholson said in a statement.
According to the VA, in late January an employee at the Birmingham, Ala., VA Medical Center reported an external hard drive missing. That drive, said the worker, may have contained veterans' personal files, some of which may have been stored on the drive in unencrypted form.
Rep. Spencer Bachus, R-Ala., whose district surrounds Birmingham, said that as many as 48,000 veterans' records were on the drive, and that as many as 20,000 were not encrypted. "Why were the records of 20,000 veterans not encrypted? Given last year's experience, VA officials should have exercised greater caution," Bachus said in a statement released Monday.
"Why did this incident happen at all given the fact that the VA already has the guidelines and tools needed to prevent such breaches? Clearly there is some sort of a disconnect between veterans officials in Washington and in the field," Bachus said.
In May 2006, the VA announced that a laptop and hard drive containing 26.5 million personal records of current and former members of the military were stolen, and that the identities were at risk to fraud. Although the hardware was later recovered, the incident led to a revamping of VA rules concerning information storage and use.
How Enterprises Are Attacking the IT Security EnterpriseTo learn more about what organizations are doing to tackle attacks and threats we surveyed a group of 300 IT and infosec professionals to find out what their biggest IT security challenges are and what they're doing to defend against today's threats. Download the report to see what they're saying.
Infographic: The State of DevOps in 2017Is DevOps helping organizations reduce costs and time-to-market for software releases? What's getting in the way of DevOps adoption? Find out in this InformationWeek and Interop ITX infographic on the state of DevOps in 2017.
2017 State of IT ReportIn today's technology-driven world, "innovation" has become a basic expectation. IT leaders are tasked with making technical magic, improving customer experience, and boosting the bottom line -- yet often without any increase to the IT budget. How are organizations striking the balance between new initiatives and cost control? Download our report to learn about the biggest challenges and how savvy IT executives are overcoming them.