MA: Data breaches affect million state residents

Hiawatha Bray of the Boston Globe had an article in today’s paper about the 807 breach notifications the state received over a two-year period. The article referenced some breaches not previously reported in the media:

Smaller incidents include the theft in October of three laptop computers from the Springfield accounting firm Moriarty & Primack. The computers held personal data from more than 1,600 state residents, including more than 1,100 employees and retirees of Smith College in Northampton, one of the accounting firm’s clients.

[…]

Eastern Bank Corp. of Lynn disclosed in September that it mailed financial data regarding about 2,500 customers to the wrong addresses. Joe Bartolotta, a spokesman for the bank, said it welcomed the law requiring such disclosures.

Of the 807 reported incidents, 60% were due to criminal acts, while 40% were attributed to negligence.

Hopefully the OSF DataLossDB project will obtain this past year’s reports from Massachusetts to add to their collection of primary sources. OSF had to pay for the reports under a Freedom of Information request and donations by supporters or those who value having more data available for research and analysis can help support their work. Credant stepped up to the plate. Will you or your company?

About the author: Dissent