The agency did not identify the companies, organizations except to say they were “private and public entities INCLUDING schools and local governments”.
The sensitive data about customers and employees had been shared from the companies’ computer networks and were available in internet peer-to-peer (P2P) file-sharing networks.
The potential for identity theft is substantial which is why the FTC issued the information on the breach.
"Unfortunately, companies and institutions of all sizes are vulnerable to serious P2P-related breaches, placing consumers' sensitive information at risk," FTC chairman Jon Leibowitz said.
"For example, we found health-related information, financial records, and drivers' license and social security numbers -- the kind of information that could lead to identity theft," Leibowitz said.
"Companies should take a hard look at their systems to ensure that there are no unauthorized P2P file-sharing programs and that authorized programs are properly configured and secure," he said.
"Just as important, companies that distribute P2P programs, for their part, should ensure that their software design does not contribute to inadvertent file sharing," he added.
P2P file-sharing software is used in a variety of ways including for playing games, making online telephone calls or sharing music, video and documents.
The FTC, in the notification letters to the companies and organizations, urged them to review their security practices "to ensure that they are reasonable, appropriate, and in compliance with the law.
"It is your responsibility to protect such information from unauthorized access, including taking steps to control the use of P2P software on your own networks and those of your service providers," the letters stated.
Wallace S. Gibson, CPM * GIBSON MANAGEMENT GROUP, Ltd.
Central Virginia
LandlordWhisperer
View our available Charlottesville, Albemarle and Lake Monticello rental homes online with photos and floor plans
"...to be a Virginian, either by Birth, Marriage, Adoption, or even on one's Mother's side, is an Introduction to any State in the Union, a Passport to any Foreign Country, and a Benediction from the Almighty God...." Anonymous
Wallace, This information should be alarming to anyone whose personal information is involved. This is not good news!
Barbara * I agree having just gone through canceling credit cards because I lost my wallet * having this information out there is unsettling
As antiquated as it sounds, we do no banking or bill pay on line and we have one computer that we use only for internet use and nothing else is stored on it. We use one credit card for online purchases that has a very low credit limit so that if someone does hack in and get that number from on line purchases, they cannot do too much damage. Sad that we have to be so cautious.
Christine * all very good options * I someone tries to use my credit cards with PHOTO ID required, they are going to have a hard time since I am a FEMALE
I'm going to COPY everything in my wallet when I get it organized this week for better follow up if it is lost again.
I use to have several different p2p programs for downloading music many years ago before Itunes came about. I was getting viruses one after the other. I decided to make the plunge and get a Mac recently, haven't had a crash, freeze, or viruz in the two years I've owned it. Scary to hear about all of this loose data running around from this breach. :(
Christopher * I don't download that stuff * I've never had an iTunes account * I load books on tape manually. This stuff is SCARY in the larger relm of our personal data and security
I recently received letter stating that someone may have obtained my son's elementary school information, ten years old and I have to sign him up for identity theft protection paid for by his school system.
Kari * I did not get a SS# until I started to work in my teens....NOW you need one IMMEDIATELY after birth for tax purposes...