December 04, 2007

In the dark: Indy energy company exposes customer info online for up to four years

The sensitive data of 3,000 residential customers of Indianapolis Power and Light were accidentally posted online for up to four years.

What kind of personal information? Names, addresses and Social Security numbers.

What happened? Some of information was posted online from 2003 until November 2007; other records were exposed for just a couple of weeks.

What was the response? The power company sent notification letters to affected customers and is offering them one year of free credit monitoring.

Details: A recent audit caught the security lapse.

Source:TheIndyChannel.com, Channel 6 News, "Security lapse affects thousands of electric customers," Dec. 4.
Previous Post
Next Post
Similar Articles
close

Next Article in The Data Breach Blog

Sign up for our newsletters

POLL

More in The Data Breach Blog

Laptop stolen from S.C. medical center contains data on 7k veterans

Laptop stolen from S.C. medical center contains data ...

Last week, hospital officials began notifying patients of the February theft.

Medical records of 2k patients left unprotected on contractor's server

Medical records of 2k patients left unprotected on ...

The records were stored by storage provider working with Glens Falls Hospital in New York.

Doctor's stolen laptop found at pawn shop; data of 652 patients exposed

The psychologist was a private contractor for Washington's Department of Social and Health Services.