It appears now that this "missing hard drive" was stolen from a VA FACILITY. This is in sharp contrast to last years missing-at-home scenario. This means that the drive walked out of a secure government facility with un-encrypted data on it.
Why was the data only partially encrypted? According to testimony before Congress by Director Jim Nicholson, ALL private data was to be encrypted on VA computers.
Why would the VA allow a "backup" from the employees computer when the data is only supposed to be on a secure VA Server?
There is an untold tale that will eventually surface regarding the rest of the story. We'll be waiting.
Running Total for 2007 as of February 12th - a minimum of
22,512,946
Individual Records Were Illegally Breached. The National Pandemic of Stupidity Continues... Are You on the List?
Subscribe to:
Post Comments (Atom)
1 comment:
"Was to be encrypted" doesn't necessarily equal "encrypted". Considering the scope of the proposed project, full encryption of all devices under VA control would likely take months, if not over a year. YVVM. - Lyger
Post a Comment