USB drive lost by police was not encrypted
By Abby Michaud,
A USB drive is missing from Lothian and Borders Police with details of hundreds of police investigations.
A police spokesman confirmed to IT PRO that Lothian and Borders Police are “unable to locate this ‘memory stick,’ which contains information on vehicle registration marks and other details used for police analysis”.
The memory stick was last used by staff working within the Road Policing Division of Police Headquarters in Edinburgh and an intensive search is advancing quickly to find it. They will review how information is handled and transported within the organisation.
“It is understood that the information contained on the stick was not encrypted as it was information being transferred within a secure compound within Police Headquarters,” the police spokesman revealed.
The spokesman for Lothian and Borders Police stated that they have a responsibility to protect the confidential information they are trusted with, and that they are confident that this loss does not “compromise any individual involved in any ongoing or previous police investigations”.
A security expert warned that the only way to ensure full security with a USB drive is to have the information stored on it encrypted.
“This shows why data on USB drives must be encrypted at all times – because they get misplaced, or easily removed from those secured areas,” said Jason Holloway from SanDisk, on the need for encryption for security purposes.
“The only way to protect data is to use mandatory encryption whenever it is moved or copied, and to ensure that users can’t turn off, disable or work around that protection."
Click here to read the lessons we all should have learned about data breaches by now.
You may also like...
Sponsored Links
advertisement
You may also like...
Latest Security Analysis & Insight
What is your password worth?
Would you be tempted to sell off company passwords for a fee? If not, seems like you're in the minority, acccording to research.
- Macs under attack?
- Intel: security inside
- Are you spending too much on IT security?
- Does the government want to snoop on your data?
- Eurocrats versus the cyber criminals
- The truth about spam
- Google and privacy: What’s the problem?
- Q&A: Symantec’s CISO on the source code hack
- RSA: Back from the breach?
Latest Security Reviews
Check Point 2210 Appliance review
Rating: 
advertisement
Most popular
- Apple iPad 3 vs iPad 2 head-to-head review
- Dell EqualLogic PS6100XS review
- Chromebooks: What's gone wrong?
- ICO: Fines for cookie law breakers
- UK regulator shuts down Angry Birds scam
- Open source software driving cloud-based innovation
- Fujitsu targets enterprises with Android ICS tablet
- IBM bans use of Siri on iPhones
- Dell PowerEdge R820 review
- BlackBerry 7 OS certified to carry 'Restricted' UK government information
Latest News Videos in Security
IT PRO Podcast: Are UK data protection laws flawed?
PlayWe bring in two experts to talk about the problems with UK data protection law and the way it is managed.
Register for IT PRO
You'll get exclusive member benefits including free whitepapers, downloads, Webinars and weekly newsletters full of the latest IT PRO news, reviews, insight and expertise.
Again...
This seems to happen weekly, I wonder how often this happens and is not reported
By Ip_kgilbertc07e9 on Tuesday Mar 10
Morons
No company that handles any type of sensitive data should ever allow it to leave a secure area within the building.. No data should ever be transferred to any type of media and freely taken home or sitting on a laptop in an open environment. At the very least it should be heavily encrypted, and restricted to a very small minority of vetted personnel. It should also be constantly tracked so its whereabouts are know at all times.
Those who loose this data should be held responsible and never permitted access to such sensitive data in the future.
By watchdog4 on Tuesday Mar 10