It appears now that this "missing hard drive" was stolen from a VA FACILITY. This is in sharp contrast to last years missing-at-home scenario. This means that the drive walked out of a secure government facility with un-encrypted data on it.
Why was the data only partially encrypted? According to testimony before Congress by Director Jim Nicholson, ALL private data was to be encrypted on VA computers.
Why would the VA allow a "backup" from the employees computer when the data is only supposed to be on a secure VA Server?
There is an untold tale that will eventually surface regarding the rest of the story. We'll be waiting.
Subscribe to:
Post Comments (Atom)
1 comment:
"Was to be encrypted" doesn't necessarily equal "encrypted". Considering the scope of the proposed project, full encryption of all devices under VA control would likely take months, if not over a year. YVVM. - Lyger
Post a Comment