Unencrypted AT&T laptop stolen, details of managers' pay lost

Telecoms carrier AT&T has admitted that it failed to encrypt a laptop that was stolen, which carrying the details...

Telecoms carrier AT&T has admitted that it failed to encrypt a laptop that was stolen, which carrying the details of managers' salaries and other staff details.

The laptop was stolen from an employee's car last month, and the firm is now planning to strengthen its laptop security procedures following the theft.

Along with executive salary and bonus details - which could prove embarrassing if posted on the web - the laptop contained Social Security numbers and other personal details which would be useful to identity thieves.

"The fact that it is AT&T that has encountered this problem highlights the reality that no one is immune to being hit by a data breach that could result in identity theft," said Michael Callahan, chief marketing officer at laptop encryption specialist CREDANT Technologies.

"Our observations suggest that incidents like this usually result in a significant change of policy within the company. Although this can be interpreted as shutting the stable door after the horse has bolted, a positive change of company policy on encryption is always welcome," he said.

CW+

Features

Enjoy the benefits of CW+ membership, learn more and join.

Read more on IT risk management

Join the conversation

1 comment

Send me notifications when other members comment.

By submitting you agree to receive email from TechTarget and its partners. If you reside outside of the United States, you consent to having your personal data transferred to and processed in the United States. Privacy

Please create a username to comment.

Encrypting the data on a laptop is a simple, cheap, and effective means of protecting the data on that device, especially for larger corporations like AT&T. Still, many companies have yet to take that step. The issue can quickly grow as companies implement BYOD and allow non-issued devices, such as personal tablets and other devices, to be used for work. It’s not really surprising that so few companies have taken this step yet (we’ve only recently started testing encryption solutions for laptops, and have yet to address mobile and other devices) because it’s very similar to DR - there are almost always initiatives that are higher priority. At least until there is an issue.
Cancel

-ADS BY GOOGLE

SearchCIO

SearchSecurity

SearchNetworking

SearchDataCenter

SearchDataManagement

Close