Language Selection

English French German Italian Portuguese Spanish

Citigroup Says UPS Lost Data

Filed under
Security

Citigroup Inc. on Monday said computer tapes containing account and payment history data, including Social Security numbers, on 3.9 million customers were lost by United Parcel Service Inc.

he disappearance is the latest in a series of reported data breaches involving U.S. companies, including Bank of America Corp. and Time Warner Inc.

New York-based Citigroup said UPS, the world's biggest package carrier, lost the tapes while shipping them to an Experian credit bureau in Texas.

The tapes covered CitiFinancial branch network customers and about 50,000 customers with closed accounts from CitiFinancial Retail Services. Customers of CitiFinancial Auto and CitiFinancial Mortgage are unaffected.

Citigroup, the world's biggest bank, on Saturday mailed a letter to customers about the problem. It said it has received no reports of unauthorized activity, and said there is "little risk" of the accounts being compromised.

"We were moving this using an enhanced security procedure we specified and developed with (UPS)," said Kevin Kessinger, president of Citigroup's North America consumer finance unit, in an interview. "You can imagine how frustrated and disappointed we are that this occurred."

Norman Black, a spokesman for Atlanta-based UPS, said "we sincerely regret that in this case we have not been able to find this package. We did conduct an exhaustive search."

Black said UPS is cooperating with Citigroup, and will "do everything we can to make sure this doesn't happen again."

Full Story.

Just Bull

I think the US Goverment is behind this data theft so they can take away more of our freedoms. They already snuck in a National ID card in a Iraq funding bill. They gonna make us all get chipped with RFID so they can keep track of us someday. Big Brother sucks. Im going to my cabin on the mountain soon.

re: Just Bull

Wouldn't doubt it, but it's probably more like an employee in this case making a quick buck selling it to whomever pays for info like that.

----
You talk the talk, but do you waddle the waddle?

Comment viewing options

Select your preferred way to display the comments and click "Save settings" to activate your changes.

More in Tux Machines

today's leftovers

  • 6 Excellent Console Linux File Managers
    A console application is computer software which can be used with a text-only computer interface, the command line interface, or a text-based interface included within a graphical user interface operating system, such as a terminal emulator (such as GNOME Terminal or the aforementioned Terminator). Whereas a graphical user interface application generally involves using the mouse and keyboard (or touch control), with a console application the primary (and often only) input method is the keyboard. Many console applications are command line tools, but there is a wealth of software that has a text-based user interface making use of ncurses, a library which allow programmers to write text-based user interfaces.
  • PHP Tour 2016 Clermont-Ferrand
  • Enlightenment's EFL Getting New DRM Library
    Chris Michael of Samsung has been working on a new DRM library for the Enlightenment Foundation Libraries (EFL) with a number of improvements. The initial implementation of this new library, Ecore_Drm2, has been added to EFL Git.
  • Antergos 2016.05.28 Screenshot Tour
  • Gentoo Linux 20160514 Screenshot Tour
  • First coding week with openSUSE, Google Summer of Code
    Embedded below is the blog of Google Summer of Code student Martin Garcia Monterde. Martin detailed his first week coding with openSUSE and the Google Summer of Code.
  • OpenPHT 1.5.2 for Debian/sid
    I have updated the openpht repository with builds of OpenPHT 1.5.2 for Debian/sid for both amd64 and i386 architecture. For those who have forgotten it, OpenPHT is the open source fork of Plex Home Theater that is used on RasPlex, see my last post concerning OpenPHT for details.
  • vcswatch is now looking for tags
    About a week ago, I extended vcswatch to also look at tags in git repositories. Previously, it was solely paying attention to the version number in the top paragraph in debian/changelog, and would alert if that version didn't match the package version in Debian unstable or experimental. The idea is that "UNRELEASED" versions will keep nagging the maintainer (via DDPO) not to forget that some day this package needs an upload. This works for git, svn, bzr, hg, cvs, mtn, and darcs repositories (in decreasing order of actual usage numbers in Debian. I had actually tried to add arch support as well, but that VCS is so weird that it wasn't worth the trouble).

Google and Oracle

Leftovers: OSS

Security Leftovers (Parrot Security OS 3.0 “Lithium”, Regulation)

  • Parrot Security OS 3.0 “Lithium” — Best Kali Linux Alternative Coming With New Features
    The Release Candidate of Parrot Security OS 3.0 ‘Lithium’ is now available for download. The much-anticipated final release will come in six different editions with the addition of Libre, LXDE, and Studio editions. The version 3.0 of this Kali Linux alternative is based on Debian Jessie and powered by custom hardened Linux 4.5 kernel.
  • Regulation can fix security, except you can't regulate security
    Every time I start a discussion about how we can solve some of our security problems it seems like the topics of professional organizations and regulation are where things end up. I think regulations and professional organizations can fix a lot of problems in an industry, I'm not sure they work for security. First let's talk about why regulation usually works, then, why it won't work for security.