Welcome Guest. | Log In | Register | Membership Benefits
  • |   Email this page E-mail
  • |  Print Print
  • |   Bookmark and Share

Subcontractor Arrested For Stealing 15,000 SSNs From NY Disability Assistance Agency

Suspect lifted other personal information, as well, from computers storing New York state agency data

Dec 22, 2010 | 02:54 PM | 

By Kelly Jackson Higgins
Dark Reading
In yet another instance of an insider going to the dark side, a subcontractor upgrading software for the State of New York's Office of Temporary Disability Assistance has been arrested for allegedly stealing 15,000 Social Security numbers from computers storing the data for the state agency.

Evan Kane, 25, of Waterford, N.Y., has been charged with forgery, possession of a forged instrument, falsifying records, and identity theft, according to published reports.

Kane was upgrading the agency's computer infrastructure and allegedly downloaded the SSNs off of contractors' systems storing the data for the agency, which handles Social Security disability claims. Authorities say only some of the stolen SSNs and other personal information were actually used, and the investigation remains under way.

Social security administration officials were not available for comment at the time of this posting. Officials have not revealed publicly just how Kane got to the data, whether he had legitimate access to the databases, or whether he downloaded the stolen information to a USB thumb drive.

Victims affected by the breach will be alerted and offered free credit monitoring, as well as help via a toll-free number.

Have a comment on this story? Please click "Discuss" below. If you'd like to contact Dark Reading's editors directly, send us a message.



Currently we allow the following HTML tags in comments:

Single tags

These tags can be used alone and don't need an ending tag.

<br> Defines a single line break

<hr> Defines a horizontal line

Matching tags

These require an ending tag - e.g. <i>italic text</i>

<a> Defines an anchor

<b> Defines bold text

<big> Defines big text

<blockquote> Defines a long quotation

<caption> Defines a table caption

<cite> Defines a citation

<code> Defines computer code text

<em> Defines emphasized text

<fieldset> Defines a border around elements in a form

<h1> This is heading 1

<h2> This is heading 2

<h3> This is heading 3

<h4> This is heading 4

<h5> This is heading 5

<h6> This is heading 6

<i> Defines italic text

<p> Defines a paragraph

<pre> Defines preformatted text

<q> Defines a short quotation

<samp> Defines sample computer code text

<small> Defines small text

<span> Defines a section in a document

<s> Defines strikethrough text

<strike> Defines strikethrough text

<strong> Defines strong text

<sub> Defines subscripted text

<sup> Defines superscripted text

<u> Defines underlined text

Dark Reading encourages readers to engage in spirited, healthy debate, including taking us to task. However, Dark Reading moderates all comments posted to our site, and reserves the right to modify or remove any content that it determines to be derogatory, offensive, inflammatory, vulgar, irrelevant/off-topic, racist or obvious marketing/SPAM. Dark Reading further reserves the right to disable the profile of any commenter participating in said activities.

Disqus Tips To upload an avatar photo, first complete your Disqus profile. | View the list of supported HTML tags you can use to style comments. | Please read our commenting policy.
Subscribe to RSS



Insider Threat Reports

report How to Prevent an Illicit Data Dump
There are no silver bullets when it comes to protecting company and customer data from loss or theft, but there are technological and procedural systems that will go a long way toward preventing a WikiLeaks-like data dump. Here are some tips and tricks to help protect your organization's most sensitive information.

report Email and Data Loss
Email encryption, rights management, email gateways, and full-on data loss prevention systems can keep corporate data secure. Here's a look at the pros and cons of each, to help you determine what?s best for your business.

report An Insider Threat Reality check
Heightened concern that users could inadvertently expose or leak -- or purposely steal -- an organization's sensitive data has spurred debate over the proper technology and training to protect the crown jewels. In this special retrospective of recent news coverage, Dark Reading takes a look at how organizations are handling the threat -- and what users are really up to.

Other reports from the Insider Threat Tech Center: