The Nation's #1 Independent Veterans Web Site
                                                   Click here to make VA Watchdog dot Org your homepage

                  VA NEWS FLASH from Larry Scott at VA Watchdog dot Org -- 05-02-2007 #3		  


 

VA Medical Malpractice Lawyer -  Malpractice Cases for Veterans Against the VA - The Law Offices of W. Robb Graham, L.L.C. - Former Navy Judge Advocate
click for more info

 


  click ad for more info


 
 

 

 



VA Watchdog Stuff
cups, hats, shirts
click here to
support the site





Be sure to get all four
VA Watchdog dot Org
RSS feeds --
Daily VA
News Flashes
 House CVA
Veterans' News
 Senate CVA
Veterans' News
 VA Press
Releases

 

 

 

 

Bookmark this page: 

Printer Friendly Page

GAO REPORT TARGETS DATA BREACH GUIDELINES --

Report says VA and other agencies need to know

how and when to offer credit monitoring and other

services to reduce the risk of identity theft.

 

 

Full GAO report here... http://www.gao.gov/new.items/d07657.pdf

Story here... http://www.networkworld.com/
news/2007/043007-gao-data-b
reach-guidelines.html

Story below:

---------------

GAO report targets data breach guidelines

Report says agencies need to know how and when to offer credit monitoring and other services to reduce the risk of identity theft.

By Jon Brodkin, NetworkWorld.com



A U.S. Government Accountability Office (GAO) report issued Monday in response to a May 2006 data breach at the Department of Veterans Affairs says federal agencies should have uniform guidelines governing when to offer credit monitoring to individuals whose personal information is exposed.

Veterans were denied the opportunity to take prompt steps to protect themselves against identity theft last year because internal delays kept key VA officials, including the agency’s secretary, in the dark for up to two weeks, the report states. One lesson learned after the breach is that federal agencies must have rapid internal notification of key officials, the GAO said.

“Because of these delays, the department’s decision about how to respond was also delayed,” the GAO said in its report today. “Prompt internal notification would help ensure that future data breaches are addressed promptly, maximizing the opportunity for affected individuals to effectively take precautions.”

A VA laptop and computer storage device containing the names, Social Security Numbers and dates of birth of all veterans discharged since 1975 were stolen from a VA employee’s home last year, exposing data from 26.5 million veterans and determining whether to offer credit monitoring and other services that may reduce the risk of identity theft.2.1 million active and reserve service members. (See the apology VA mailed to veterans.)

Today’s report urges the Office of Management and Budget, which oversees security and privacy for the federal government, to develop guidance agencies can use when determining whether to offer credit monitoring and other services that may reduce the risk of identity theft. Without such guidance, the GAO said, agencies may make inconsistent decisions that leave some people more vulnerable than others.

The Office of Management and Budget addressed many of the concerns raised by the data breach in guidance it issued last year, but so far has not assisted agency officials “in making consistent risk-based determinations about when to offer credit monitoring or other protection services,” the GAO says.

Data breaches should not always be reported to affected individuals, the GAO says. Notification when there is little or no risk of harm might create “unnecessary concern and confusion,” desensitize consumers to the dangers of identity theft, and be costly for both government agencies and individuals, the report states.

To ensure consistency, the GAO says each agency should have a core group of senior officials that meets after every breach and determines the agency’s response, and have mechanisms in place to obtain contact information for individuals in danger of identity theft.

Internal training and awareness must be in place to ensure timely responses to breaches, and public interaction after such incidents require careful coordination and can be costly, the report also says.

---------------

Larry Scott  --

Don't forget to read all of today's VA News Flashes (click here)

Click here to make VA Watchdog dot Org your homepage

email Larry  PGP key on request

Send this page to a friend:    

(go back to VA Watchdog dot Org Home Page)

 


 

The Order of the
Silver Rose

Honoring Victims of Agent Orange Illnesses & Deaths with Gratis Medal - Vietnam Veterans get a Yearly Full Physical - Your Life May Be Saved
click for more info
 

If you're military, you need to know VA Joe. Active military forum and comedy contests along with updates on VA benefits through the GI Bill program, all from Joe -- Sign up today.

 



VA Watchdog Stuff
cups, hats, shirts
click here to
support the site







Be sure to get all four
VA Watchdog dot Org
RSS feeds --
Daily VA
News Flashes
 House CVA
Veterans' News
 Senate CVA
Veterans' News
 VA Press
Releases



 

 

   
Google
 
Web www.vawatchdog.org


FAIR USE NOTICE: This site contains copyrighted material the use of which has not always been specifically authorized by the copyright owner. We are making such materials available in an effort to advance understanding of veterans' issues. We believe this constitutes a 'fair use' of any such copyrighted material as provided for in section 107 of the US Copyright Law. In accordance with Title 17 U.S.C. Section 107, the material on this site is distributed without profit to those who have expressed an interest in receiving the included information for educational purposes. For more information go to: http://www.law.cornell.edu/uscode/17/107.shtml   If you wish to use copyrighted material from this site for purposes of your own that go beyond 'fair use', you must obtain permission from the copyright owner.