Stolen laptop leads to compromised unencrypted personal data

Share this article:

The personal information of an undisclosed number of individuals who have enrolled in or discussed health care plan options with an AppleCare Insurance Services agent has been compromised after the agent's laptop was stolen.

How many victims? The total number of affected individuals has not been disclosed. 

What type of personal information? Names, dates of birth, Social Security numbers, and addresses.

What happened? The laptop belonging to the agent and containing the sensitive data was stolen.

What was the response? AppleCare Insurance Services has notified those affected by the breach, have filed a police report, and offered one year of free identity theft protection services.

Details: According to a letter by Michael Blea, and sent to those affected by the incident, those affected may include anyone who has “worked with” or discussed health plan enrollment with the agent. The company is intending to take “appropriate employment action” against the agent. After an investigation, company officials reviewed the backed-up content that was on the laptop's hard drive in order to determine the information located on it. No credit card or financial information belonging to individuals was on the laptop.

Source: http://oag.ca.gov, “AppleCare Notification Letter,” March 3, 2014.

Share this article:
You must be a registered member of SC Magazine to post a comment.

Sign up to our newsletters

RECENT COMMENTS

FOLLOW US

More in The Data Breach Blog

Transcript website flaw exposed personal data on 98k users

NeedMyTranscripts.com expose users' names, addresses and dates of birth, among other information, due to a site flaw that one user discovered.

Sourcebooks payment card breach impacts more than 5,000 customers

More than 5,000 customers had personal information stolen, but roughly 9,000 notification letters were sent out as a precautionary measure.

Cyberswim notifies customers that payment card data may be at risk

Malicious software installed on Sept. 24 may have compromised personal information for visitors that made purchases between May 12 and Aug. 28.