Banking Information Sold on eBay --- for £35

rated by 0 users
This post has 2 Replies | 0 Followers

Top 10 Contributor
Posts 26,096
Points 1,183,530
Joined: Sep 2007
ForumsAdministrator
News Posted: Tue, Aug 26 2008 11:48 AM

It's not the first time something like this has happened, and it won't be the last. What's worrisome is that it probably happens more often than we know, and we just don't hear about it.



No, someone didn't explicitly sell personal info on eBay. What they did was sell a hard drive with the bank account numbers, phone numbers, mothers' maiden names and signatures of 1 million customers of American Express, NatWest and the Royal Bank of Scotland on it. Big oops, right?



Fortunately, the buyer was Andrew Chapman, an IT manager from Oxford, and not some scammer. Obviously, the odds are in favor of the buyer either being someone honest, or else just not noticing the extraneous data.

The drive originally belonged to data archival firm Graphic Data, which is owned by Mail Source.



In a statement, Mail Source said:
"Investigations are still ongoing to find out how this equipment was removed from one of Graphic Data's secure locations. We take customer privacy and data security very seriously. This incident is extremely regrettable and we're taking every possible step to retrieve the data and ensure this is an isolated incident."
Waitasec, since the buyer reported it, just how hard is it to retrieve the data? A spokesperson added:
"We know which employee took the server and sold it, but we believe it was an honest mistake and it was not intentional to sell it without the server being cleared."
For those of us who might want to sell or donate a used hard drive, it serves as a reminder: use something like SDelete to really wipe your hard drive before giving it to someone.



  • | Post Points: 35
Top 10 Contributor
Posts 6,181
Points 90,135
Joined: Aug 2003
Location: United States, Virginia
Moderator

Hard drives like this should be destroyed so they can never get in the wrong hands

http://www.networkworld.com/news/2006/062706-guard-dog.html

“The [National Security Agency] has to destroy about 30,000 hard drives a year,” Knotts says. “Presently they do it by grinding them into powder or magnetically degaussing them”

Now thats how it should be done.

  • | Post Points: 5
Top 10 Contributor
Posts 5,053
Points 60,715
Joined: May 2008
Location: U.S.
Moderator
3vi1 replied on Thu, Aug 28 2008 12:59 PM
People are pretty idiotic with their old drives.

I recall some college kids who did a paper where they bought a bunch of failed hard drives on the net, swapped the controllers with that of a working drive, and were able to find out all kinds of things about the previous owners.

What part of "Ph'nglui mglw'nafh Cthulhu R'lyeh wgah'nagl fhtagn" don't you understand?

++++++++++++[>++++>+++++++++>+++>+<<<<-]>+++.>++++++++++.-------------.+++.>---.>--.

  • | Post Points: 5
Page 1 of 1 (3 items) | RSS