CNN.com has an article about a US government laptop that was stolen. It's not the laptop that's the problem, but the "unencrypted medical records of 2,500 participants in a government study" on it: "The incident prompted the NHLBI to issue a statement saying it would no longer store patient medical information on laptops. The lack of encryption violated federal guidelines dating back to 2006. Shurin told CNN the stolen laptop 'fell through the cracks' and should have been encrypted. A thorough review of other laptops containing sensitive information is under way, she said. On Friday, the NHLBI said it would install encryption software on its laptops and conduct regular security training for its employees."
Rico says if the 'senior employee' who had it in their trunk isn't fired, there's no justice. How hard is it to do this right, people?
Do we find it strange that IT was sourced a few years back?
ReplyDelete