A break-in and computer theft last month in an office of TransUnion credit monitoring service has left 3,600 consumers at risk of ID theft, the company said Tuesday.
Security experts warn that the type of information that can be extracted from such computers often is used as the "keys to the vault," which enable the thieves to engage in other illicit behavior.
A small TransUnion sales office in California was burglarized and a desktop computer was stolen in October, the company noted. Consumers whose information was contained in the computer were notified of the theft and given a year of complimentary credit monitoring by the service.
TransUnion said it does not believe any fraudulent activity has occurred since the PC heist, and noted that the computer required a password to access the data.
"Protecting a computer with just a password is not good enough. It's easy to figure out passwords and pull the information out," said Prat Moghe, chief executive of Tizor Systems, a maker of software that audits employee access to data and applications.
Moghe added that thieves will use the sensitive information stored in a computer to inflict greater harm through identity theft.
"When a hacker gets a desktop computer, it itself is not the main source for the attack. It's like getting the keys to a bank vault. They can create identities with that information that will get them into backend systems where more damage can be done," Moghe said.
A spokesman for TransUnion declined to comment on whether the credit monitoring company is using other forms of security, in addition to passwords, to protect consumer data.
"CardSystems is a third-party payment processor for MasterCard, Visa, Discovery and American Express branded cards, and for other credit card agencies."
Discovery? Guess we changed names, I thought we were still called Discover.
I am busting my gut laughing at the irony of a company that makes money off of selling my identity to others, and wants to charge me for a service to monitor the very data that they sell, that has now put those very customers at risk. This is just too rich. We are all such shills and fools. Who's running TransUnion now, Michael Brown?
Chinese authorities have reportedly taken iPads from a third-party retailer, a move apparently brought on by Apple's continued refusal to honor a trademark for the iPad name owned by a Chinese manufacturer.
NY professor believes that a word-based algorithm can help bring together those who believe, with one glimpse, that they have found and lost the love of their lives.
After a higher-than-expected fourth quarter, the video subscription service unburdens itself of a pending yearlong class action suit and settles for $9 million.
Along with green-lighting Google's buy of Motorola, the Justice Department today OKs an Apple-Microsoft-RIM partnership deal to buy Nortel patents, and Apple's plan to acquire Novell patents.
Chamtech's spray-on antenna uses a nano material to provide a low-power boost to antenna range. The wireless-in-a-can product may some day bring an end to unsightly cell towers.
This week, we pass around Sony's new PlayStation Vita for some hands-on testing, check out HP's newest Beats Audio laptop, and debate the best and worst Valentine's Day gadget gifts.
EnerG2 opens a plant to make an engineered carbon that will improve performance of energy storage devices and make storage for start-stop hybrid cars less expensive.
Discovery? Guess we changed names, I thought we were still called Discover.