Free Newsletter
Register for our Free Newsletters
Newsletter
Zones
Access Control
LeftNav
Alarms
LeftNav
Biometrics
LeftNav
Detection
LeftNav
Deutsche Zone (German Zone)
LeftNav
Education, Training and Professional Services
LeftNav
Government Programmes
LeftNav
Guarding, Equipment and Enforcement
LeftNav
Industrial Computing Security
LeftNav
IT Security
LeftNav
Physical Security
LeftNav
Surveillance
LeftNav
View All
Other Carouselweb publications
Carousel Web
Defense File
New Materials
Pro Health Zone
Pro Manufacturing Zone
Pro Security Zone
Web Lec
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
ProSecurityZone Sponsor
 
 
News

Hospital laptop theft leaves patient data vulnerable

Sophos : 18 June, 2008  (Technical Article)
Loss of 6 portable computers from London hospital puts sensitive data about patients at risk of being used for identity theft
IT security and control firm Sophos is reminding organisations of the risks of data loss and identity theft following news that six laptops, containing personal information about 20,000 NHS patients, have been stolen from St George's Hospital in Tooting, London.

Sophos experts note that inadequate security policies left the data vulnerable, with the sensitive information being stored on the laptops on a temporary basis due to computer network problems at the hospital.

'Sensitive patient data should never be stored on portable computers,' said Carole Theriault, senior security consultant at Sophos. 'This should serve as a reminder of the damage that is done by poor attention to IT security policy. Organisations that are given the responsibility to store confidential personal details should invest in systems that make sure that this kind of information cannot be transferred to devices that may be compromised, putting not only the organisation, but also the individuals concerned at risk of ID theft.'

St George's Healthcare NHS Trust has said that information such as postcodes were password protected, but patient name and hospital number were shown on the records.

"Although on this occasion it appears that the damage may be limited, this will be of little consolation to the patients whose records have been stolen," adds Theriault. "It is vital that policies are implemented and enforced to ensure that no kind of confidential information is made vulnerable to theft. Sensitive data should be encrypted, or better yet, simply not stored on portable devices like laptops and blackberries.'

Bookmark and Share
 
Home I Editor's Blog I News by Zone I News by Date I News by Category I Special Reports I Directory I Events I Advertise I Submit Your News I About Us I Guides
 
   © 2012 ProSecurityZone.com
Netgains Logo