GAP accountable for theft of 800,000 SSNBest Security Tips offers daily news, information, advices and tips about spyware, adware, viruses, trojans, web vulnerabilities, hackers, other threats    | Register now | Login
   
TIPS NEWS TOOLS DOWNLOADS MALWARE FORUM BOOKS FREE MAGAZINES FREE WEBCASTS & VIDEOS
GFI LANguard Network Security Scanner - Dld 30-day trial! del.icio.us  digg  Furl  NewsVine  Spurl  Blinklist  Ma.gnolia  Reddit  Tailrank  YahooMyWeb 
Best Tips
Security Scanner
Security Categories
Advertise With Us!
Latest Viruses / Threats
Downloads
RSS / Atom Feeds
Security Incidents : GAP accountable for theft of 800,000 SSN
Posted by Max on 2007/9/30 11:24:37 (616 reads)
Security Incidents

GAP, the famous clothing retailer, shares the cruel faith of TJX and Monster. The theft of an unencrypted laptop on Sunday caused the loss of more than 800,000 SSN belonging to former job applicants at GAP.

Gap learned of the theft on Sept. 19, and later said the laptop was stolen from the offices of a third-party vendor managing job applicant data for it.Cynthia Lin, spokeswoman of the California-based clothier, would not disclose the name of the vendor, nor would she provide any other details of the theft.

"They trusted their data to our company, so we are ultimately accountable for this incident," Lin said, referring to the job seekers.An investigation into the matter is under way, though the company said "the company has no reason to believe the data contained on the computer was the target of the theft or that the personal information had been accessed or used improperly."

The stolen laptop contained personal information for people who applied for store positions with the company's Old Navy, Banana Republic, Gap and Outlet stores in the United States, Puerto Rico and Canada between July 2006 and June 2007, according to Gap. The applicants' Social Security numbers were included in the stolen information.

Although the job applicant information on the laptop-- which included Social Security numbers-- was supposed to be encrypted, it was not.Storing data without encrypting it to protect it from hackers is contrary to Gap's agreement with the third-party vendor, Gap said.

"What happened here is against everything we stand for as a company," said Gap Chairman and CEO Glenn Murphy. "We're reviewing the facts and circumstances that led to this incident closely, and will take appropriate steps to help prevent something like this from happening again." So far the company said job applicants have not notified it of any instances of identity theft or fraud related to the incident.




Other articles
2008/8/21 15:52:01 - BitRoll and Torrent101 Used to Distribute the Lop Adware
2008/8/20 15:06:33 - FRAUDFacts Helps You Fight Identity Theft and Fraud for Life
2008/8/13 16:42:03 - 10 Million Zombies Are Spreading Spam and Malware Every Day
2008/8/11 9:03:35 - Nearly $8.5 Billion Lost by US Consumers because of Online Threats
2008/8/8 6:35:36 - EDS' Eight Tips for Consumers to Protect Themselves from Identity Theft

The comments are owned by the poster. We aren't responsible for their content.