A hard drive containing the personal data of up to 48,000 veterans is missing, presumed stolen, the Department of Veterans Affairs admitted last week.

The external hard disc was used by a worker at a VA medical facility in Alabama to back up information until it went missing on 22 January. Data included on the drive may have contained personal identifying information on some veterans, and data from research projects. Portions of this data were protected but others may not have been, sparking concerns that it might be misused for the purposes of identity theft.

The VA and the FBI are both investigating the latest case. Security experts from the VA's Office of Inspector General have seized the employee's computer and are analysing it in an attempt to work out what data is likely to have been exposed.

Alabama Congressman Spencer Bachus told AP that the personal data of up to 48,000 veterans was on the hard drive. Around 20,000 of these records were not encrypted, he added.

Pending results of the investigation, the VA is prepared to send individual notifications and to provide one year of free credit monitoring to people whose information was compromised. ®

Related stories

• Privacy breach nuked in Canadian passport site (4 December 2007)
• Hitachi ships Travelstar 7K200 encrypted hard drive (7 June 2007)
• TSA: We're not saying our hard drive is gone but... (7 May 2007)
• Feds urge tougher ID theft laws (24 April 2007)
• Georgia on the mind of three million after CD loss (11 April 2007)
• Laptop thefts expose 40,000 Chicago teachers (9 April 2007)
• How to find stolen laptops (14 March 2007)
• Laptop losses and phishing fruit salad (20 February 2007)
• FSA has power to order data breach disclosure (19 February 2007)
• Two teens charged over VA laptop theft (7 August 2006)
• Stolen VA laptop sold off 'back of a truck' (6 July 2006)
• Laptop with veterans' data recovered intact (30 June 2006)
• US veterans' data exposed after burglary (23 May 2006)
• US Vets hacked to pieces (22 September 2000)