What happened? A thumb drive was stolen out of the car of a soldier traveling on official duty for the Idaho National Guard.
How many victims? All 3,400 guard members.
What kind of personal information? Social security numbers and other sensitive data, possibly including bank account information.
What was the response? Guard officials contacted the affected soldiers through a phone tree normally reserved for disasters or other state emergencies.
Details: The device was not encrypted, but the guard said it was in the process of encrypting all devices. No policy is in place prohibiting soldiers from transporting storage devices containing sensitive records.
Quote: "You name it, it was on there." - Lt. Col. Stephanie Dowling
Infosec teams struggle to detect Linux-based threats such as Vermillion Strike due to an overemphasis on Windows malware, a lack of effective solutions for protecting data centers, and the immaturity of sandboxes.