Attorney General Richard Blumenthal — citing an eight-month delay by the State Teachers’ Retirement Board in notifying 58,506 individuals about a security breach — urged the board to provide credit monitoring and other identity theft protections.
The board notified Blumenthal’s office in December of last year that a flash drive, though encrypted, was missing. The drive contained names, addresses, salaries, the last four numbers of Social Security numbers and other sensitive information about individuals that could be misused.
Blumenthal had urged the board to “immediately notify all individuals whose information was contained on the flash drive, explaining the loss, the information contained on the flash drive and any safety and security information the board and the Department of Information Technology believe is appropriate.”
Despite Blumenthal’s urging, notifications were not distributed until June, about six months after the breach was discovered, and the notices failed to explain the nature of the breach and categories of information compromised.
“Tens of thousands of individuals impacted by this security breach deserve the specifics and safeguards to protect against identity theft,” Blumenthal said. “The Connecticut Teachers’ Retirement Board has a moral and professional duty to promptly notify its members when private information is compromised, and provide protections.
“The board should do the right thing immediately: explain the problem and offer security.”
Several teachers have contacted Blumenthal’s office with questions and concerns about the breach, noting the lack of information in the board’s brief notification letter.
Blumenthal said the board must send a new notification letter more fully explaining the facts and offering identity theft protection for two years, including at least $25,000 of identity theft insurance and reimbursement for costs associated with placing and lifting a security freeze with each of the three credit rating agencies.
Similar Posts:
- UConn Security Breach Impacts More than 10,000
- Health Net Disk Drive Possibly Stolen
- Blumenthal Investigating Wellpoint Security Breach Of 500,000 Customers
- Health Net Settles With Connecticut Over Massive Security Breach
- Attorney General Announces Investigation Into Yale Security Breach
- Health Net Delayed Reporting Loss Of 450,000 Conn Consumer Health Personal Data
[...] This post was mentioned on Twitter by George Gombossy, Chad Booker. Chad Booker said: Conn Teachers' Retirement Board Urged To Provide ID Protection … http://bit.ly/9sf92v [...]
[...] Teachers' Retirement Board owes its members identity theft protection and an explanation …Conn Teachers' Retirement Board Urged To Provide ID Protection After BreachConnecticut Watchdog (blog)Connecticut AG Wants Teachers Board to Explain Data LossIT Business Edge [...]
[...] Conn Teachers’ Retirement Board Urged To Provide ID Protection After Breach – Connecticu… 16. July 2010, 8:00 UhrIdentity Theft NewsPaige M. WheelerComments Off [...]