When sensitive data of nearly 5 million TRICARE patients was compromised last September due to the theft of backup tapes from an employee's car, the company quickly jumped to reassure its customers that "the risk of harm to patients is judged to be low despite the data elements involved since retrieving the data on the tapes would require knowledge of and access to specific hardware and software and knowledge of the system and data structure."
But low risk isn't no risk, and as it turns out, the theft was very likely planned by someone who knew how the information contained in those unencrypted tapes can be successfully extracted.
The records included names, addresses, phone and Social Security numbers, and specific health data of current and former military personnel and their families, but were said not to contain any financial data.
Nevertheless, a number of patients have come forward and have filed a $4.9 billion class action lawsuit against the Department of Defense and TRICARE contractor Science Applications International Corporation, saying that their credit cards have been misused and their bank accounts raided by unknown individuals due to the data breach.
To Continue Reading: Click Here
------------------------------------------------------
Source: net-security.org
By: Zeljka Zorz
No comments:
Post a Comment