Feeds

Two teens charged over VA laptop theft

Relax. It's just random

Website security in corporate America

Two US teenagers were arrested last weekend for stealing a Veterans' Administration laptop, an incident that proved a major security flap and brought calls for improved information security legislation.

A thief stole the laptop from the Virginia home of a worker at the Department of Veterans Affairs (VA) during the course of a burglary in early May. At the time, VA officials were quick to blame the data analyst involved for violating agency policy in taking the laptop home. However, it has since emerged that the worker, who was placed on administrative leave during the course of an inquiry, had written permission to take the sensitive data away from VA offices in order to work from home.

Information held on the laptop included the names, dates of birth and Social Security numbers of approximately 26.5m former and acting US servicemen and women dating back to 1975. VA officials went public to warn veterans of the incident. FBI and local law enforcement officials were involved in investigating the security breach.

The laptop and its hard drive ended up for sale on a "black market" near a subway station near Wheaton outside of Washington DC and returned to the authorities by an unidentified woman at the end of June. A preliminary investigation by FBI officials suggests that data has not been accessed since the laptop was stolen, easing fears that the exposed data might have fallen into the hands of identity thieves.

A phone tip-off led to the arrest on Saturday of two suspects, both from Rockville, Maryland: Christian Brian Montano, 19, and Jesus Alex Pineda, 19. Each faces burglary and theft charges, the AP reports. An unnamed male suspect also faces possible charges over the alleged theft, which police describe as a random burglary not motivated by thoughts of profiting from identity theft. ®

Protecting users from Firesheep and other Sidejacking attacks with SSL

More from The Register

next story
Hackers pop Brazil newspaper to root home routers
Step One: try default passwords. Step Two: Repeat Step One until success
UK.gov lobs another fistful of change at SME infosec nightmares
Senior Lib Dem in 'trying to be relevant' shocker. It's only taxpayers' money, after all
Critical Adobe Reader and Acrobat patches FINALLY make it out
Eight vulns healed, including XSS and DoS paths
Spies would need SUPER POWERS to tap undersea cables
Why mess with armoured 10kV cables when land-based, and legal, snoop tools are easier?
TOR users become FBI's No.1 hacking target after legal power grab
Be afeared, me hearties, these scoundrels be spying our signals
Blood-crazed Microsoft axes Trustworthy Computing Group
Security be not a dirty word, me Satya. But crevice, bigod...
Snowden, Dotcom, throw bombs into NZ election campaign
Claim of tapped undersea cable refuted by Kiwi PM as Kim claims extradition plot
Freenode IRC users told to change passwords after securo-breach
Miscreants probably got in, you guys know the drill by now
prev story

Whitepapers

Secure remote control for conventional and virtual desktops
Balancing user privacy and privileged access, in accordance with compliance frameworks and legislation. Evaluating any potential remote control choice.
WIN a very cool portable ZX Spectrum
Win a one-off portable Spectrum built by legendary hardware hacker Ben Heck
Storage capacity and performance optimization at Mizuno USA
Mizuno USA turn to Tegile storage technology to solve both their SAN and backup issues.
High Performance for All
While HPC is not new, it has traditionally been seen as a specialist area – is it now geared up to meet more mainstream requirements?
The next step in data security
With recent increased privacy concerns and computers becoming more powerful, the chance of hackers being able to crack smaller-sized RSA keys increases.