Feeds

NASA 'nauts personal DATA at risk after laptop SNATCH BUNGLE

Total ban on non-encrypted disks outside the wire

Reducing security risks from open source software

A NASA laptop containing personal records of thousands of employees and contractors was stolen two weeks ago.

The computer, which contained a copy of workers' social security numbers among other information, was taken from a locked car near NASA HQ in Washington DC on 31 October, according to a leaked email.

The laptop was password protected, but the disk was partially unencrypted: "the information on the laptop could be accessible to unauthorized individuals," Richard Keegan, NASA's associate deputy administrator, wrote in the agency-wide memo published on the SpaceRef website. The missive went on to warn:

Because of the amount of information that must be reviewed and validated electronically and manually, it may take up to 60 days for all individuals impacted by this breach to be identified and contacted.

NASA has hired data-breach specialists to help tackle any fraud or identity theft in the wake of the blunder. As a result of the theft, NASA's chief administrator Charles Bolden has demanded that no agency laptops be allowed out of the property without full-disk encryption.

Bolden wants all NASA laptops fully encrypted by 21 December, has banned the storage of sensitive files on smartphones and tablets, and told everyone to purge sensitive files from laptops when they are no longer needed.

The Reg contacted NASA for comment but as yet has received no reply. ®

Mobile application security vulnerability report

More from The Register

next story
LibreSSL RNG bug fix: What's all the forking fuss about, ask devs
Blow to bit-spitter 'tis but a flesh wound, claim team
Microsoft: You NEED bad passwords and should re-use them a lot
Dirty QWERTY a perfect P@ssword1 for garbage websites
Manic malware Mayhem spreads through Linux, FreeBSD web servers
And how Google could cripple infection rate in a second
NUDE SNAPS AGENCY: NSA bods love 'showing off your saucy selfies'
Swapping other people's sexts is a fringe benefit, says Snowden
L33t haxxors compete to p0wn popular home routers
EFF-endorsed SOHOpelessly Broken challenge will air routers' dirty zero day laundry
Own a Cisco modem or wireless gateway? It might be owned by someone else, too
Remote code exec in HTTP server hands kit to bad guys
British data cops: We need greater powers and more money
You want data butt kicking, we need bigger boots - ICO
Crooks fling banking Trojan at Japanese smut site fans
Wait - they're doing online banking with an unpatched Windows PC?
prev story

Whitepapers

Top three mobile application threats
Prevent sensitive data leakage over insecure channels or stolen mobile devices.
The Essential Guide to IT Transformation
ServiceNow discusses three IT transformations that can help CIO's automate IT services to transform IT and the enterprise.
Mobile application security vulnerability report
The alarming realities regarding the sheer number of applications vulnerable to attack, and the most common and easily addressable vulnerability errors.
How modern custom applications can spur business growth
Learn how to create, deploy and manage custom applications without consuming or expanding the need for scarce, expensive IT resources.
Consolidation: the foundation for IT and business transformation
In this whitepaper learn how effective consolidation of IT and business resources can enable multiple, meaningful business benefits.