Saturday, April 09, 2005
Laptop theft
185,000 people exposed to identity theft or worse when laptops were stolen from the San Jose Medical Group. Supposedly the laptops didn't have actual medical histories but did have "billing codes", and I haven't seen an explanation of what that means.
This was a regular burglary as opposed to a snatch-and-grab at the coffee shop. Even so, laptops are easier for a burglar to pack and run away with.
If you have sensitive information on your laptop then for heaven's sake think about its physical security.
First, don't trust the average cable lock. With a little practice most people can open one popular brand with a Bic pen in place of the key. Go to a locksmith shop, ask if they know which ones are good, and when you find one who says "yes" get your laptop lock from them.
Second, back up your data. What could you not afford to lose? Email? Bookmarks? Irreplacable photos?
Third, if something's really a secret, do what I do with client data on my laptop. Encrypt it. I use the well-regarded but sometimes intimidating PGP. There are also products, none of which I've been brave enough to try, that encrypt your entire disk. Study reviews of these carefully. The clueful Fred Avolio has reported problems with disk encryption programs.
And you know, common sense helps too. Do you really need to put 185,000 of your customers's Social Security numbers on a laptop?
|
This was a regular burglary as opposed to a snatch-and-grab at the coffee shop. Even so, laptops are easier for a burglar to pack and run away with.
If you have sensitive information on your laptop then for heaven's sake think about its physical security.
First, don't trust the average cable lock. With a little practice most people can open one popular brand with a Bic pen in place of the key. Go to a locksmith shop, ask if they know which ones are good, and when you find one who says "yes" get your laptop lock from them.
Second, back up your data. What could you not afford to lose? Email? Bookmarks? Irreplacable photos?
Third, if something's really a secret, do what I do with client data on my laptop. Encrypt it. I use the well-regarded but sometimes intimidating PGP. There are also products, none of which I've been brave enough to try, that encrypt your entire disk. Study reviews of these carefully. The clueful Fred Avolio has reported problems with disk encryption programs.
And you know, common sense helps too. Do you really need to put 185,000 of your customers's Social Security numbers on a laptop?
# posted by Frederick @ 7:37 PM Email to a friend:
Haloscan: they provide trackback