DataBreaches.net

DataBreaches.net

The Office of Inadequate Security

Menu
  • Breach Laws
  • About
  • Donate
  • Contact
  • Privacy
  • Transparency Reports
Menu

PA: Wind Gap Kmart reports prescription data breach following armed robbery

Posted on February 10, 2014 by Dissent

Jim Deegan reports:

A gunman who robbed the Wind Gap Kmart last month left with more than cash.

A bag stolen from a safe contained money and electronic media that backed up the store pharmacy’s computer system, the retailer said today.

The media contained confidential information related to customer prescriptions: names, addresses, dates of birth, prescription numbers, insurance cardholder IDs and drug names.

A relatively small number of those prescriptions may have included customers’ Social Security and/or driver’s license numbers, Kmart said.

Read more on The Express-Times.

And the backup media wasn’t encrypted…. why?

Related Posts:

  • Kmart says some confidential customer information…
  • Kmart customer details hacked
  • Kmart nationwide retailer suffers a ransomware attack
  • Kmart Confirms Credit Card Data Breach
  • Banks Sue Kmart Over Credit Card Data Breach

Post navigation

← Woman pleads guilty to forging letters to Alexian Brothers patients
Wide Area and Sensing Conference Hacked, Database Leaked for #OpbigBrother →

1 thought on “PA: Wind Gap Kmart reports prescription data breach following armed robbery”

  1. Anonymous says:
    February 14, 2014 at 1:15 pm

    Although it doesn’t say anywhere in the article that you posted in your source that the backup media was not encrypted, it is likely true. Many companies with multiple locations run local backup processes on their systems and have the media prepared for taking offsite. A proper step in an IT backup procedure. Some companies have not yet improved their backup procedures to the next level by adding encryption to their backup data files. Remote locations may not have the resources or expertise to implement file encryption procedures in backups. IT should look at database encryption options on their centralized database so that any sensitive data that may be stored offline, (such as backups) is already encrypted and secured from unauthorized viewers. [link to commercial product deleted by moderator]

Comments are closed.

Sponsored or Paid Posts

This site doesn’t accept sponsored posts and doesn’t respond to requests about them.

Have a News Tip?

Email:

Breaches[at]Protonmail.ch
Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Telegram: @DissentDoe

Browse by News Section

Latest Posts

  • The Untold Story of a Massive Hack at HHS in Covid’s Early Days
  • Records reveal new information about Sweetwater Union High School District ransomware incident
  • HHS’ Office for Civil Rights Settles First Ever Phishing Cyber-Attack Investigation
  • Founder and Majority Owner of Cryptocurrency Exchange Pleads Guilty to Unlicensed Money Transmitting
  • Hackers hit Erris water in stance over Israel
  • Data breach by Addenbrooke’s Hospital reveals patient information
  • Millions of patient scans and health records spilling online thanks to decades-old protocol bug
  • Cybersecurity: Federal Agencies Made Progress, but Need to Fully Implement Incident Response Requirements (GAO Report)

Please Donate

If you can, please donate XMR to our Monero wallet because the entities whose breaches we expose are definitely not supporting our work and are generally trying to chill our speech!

Donate- Scan QR Code   Donate!

Social Media

Find me on Infosec.Exchange.

I am also on Telegram @DissentDoe.

RSS

Grab the RSS Feed

Copyright

© 2009 – 2023, DataBreaches.net and DataBreaches LLC. All rights reserved.

HIGH PRAISE, INDEED!

“You translate “Nerd” into understandable “English” — Victor Gevers of GDI Foundation, talking about DataBreaches.net

©2023 DataBreaches.net