BP on Monday mailed out letters to 13,000 US residents affected by last year’s Gulf of Mexico oil spill, advising them it had lost a laptop containing their personal details.
The laptop contained details of people that had made compensation claims directly to BP as a result of last year's massive oil spill.
Personal data on the laptop included names, social security numbers, phone numbers and addresses.
The device was password-protected but information on it was not encrypted, BP spokesperson Curtis Thomas told the Associated Press.
BP sent the letters a month after an employee reported that the laptop had gone missing during “routine business travel”, according to the spokesperson.
Like many other organisations that lost US customer data, the oil giant offered affected claimants free credit monitoring services.
“The sobering part of this regrettable incident is that it happened because a single laptop was lost or stolen,” said Paul Ducklin, head of technology for Sophos’ Asia Pacific region.
“We all need to lift our game, even in countries like Australia, and much of the rest of Asia Pacific, where security breaches can simply be swept under the carpet thanks to the lack of mandatory disclosure laws.”
Copyright © iTnews.com.au . All rights reserved.
Issue: 338 | May 2015
Access CRN's extensive online resources including; email bulletins, community discussions and unique online news.
Processing registration... Please wait.
This process can take up to a minute to complete.
A confirmation email has been sent to your email address - SUPPLIED GOES EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can log on to the CRN website or start posting comments on articles.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain '@crn.com.au' to your white-listed senders.