Laptop theft

From Wikipedia, the free encyclopedia

Laptop theft is a significant threat to users of laptop computers. Many methods to protect the data and to prevent theft have been developed, including alarms, laptop locks, and visual deterrents such as stickers or labels. Victims can lose hardware, software, and essential data that has not been backed up. Thieves also may have access to sensitive data and personal information. Some systems authorise access based on credentials stored on the laptop including MAC addresses, web cookies, cryptographic keys and stored passwords.

According to the FBI, losses due to laptop theft totaled more than $6.7 million dollars in 2005. The Computer Security Institute/FBI Computer Crime & Security Survey found the average theft of a laptop to cost a company $89,000.^{[citation needed]}

[edit] Best practices against laptop theft

Depending on what is kept on a particular laptop, lack of proper security precautions allows a thief to easily acquire such information as personal bookkeeping files, documents containing passwords, addresses, as well as employee and customer information stored on company laptops.

[edit] Inside protection

Passwords are no longer adequate to protect laptops. There are many solutions that can improve the strength of a laptop's protection. Full disk encryption (FDE) is an increasingly popular and cost-effective approach. Full disk encryption can be taken on from a software-based approach, a hardware-based approach, or both - end-based approach. FDE provides protection before the operating system starts up with pre-boot authentication, however precautions still need to be taken against cold boot attacks.

There are a number of tools available, both commercial and open source that enable a user to circumvent passwords for Windows, Mac OS X, and Linux.

Passwords provide a basic security measure for files stored on a laptop, though combined with disk encryption software they can reliably protect data against unauthorized access. Remote Laptop Security (RLS) is available to confidently secure data even when the laptop is not in the owner's possession. With Remote Laptop Security, the owner of a laptop can deny access rights to the stolen laptop from any computer with Internet access.

Final Defence is also a superb inside security measure as you can track and trace the laptop after it is stolen and most importantly kill the laptop if it is stolen

[edit] Physical protection

A number of computer security measures have emerged that aim at protecting data. The Kensington Security Slot along with a locking cable provides physical security against thefts of opportunity.

[edit] Centralization of laptop data

Another possible approach to limiting the consequences of laptop theft is to issue Thin client devices to field employees instead of conventional laptops, so that all data will reside on the server and therefore may be less liable to loss or compromise. If a thin client is lost or stolen, it can easily and inexpensively be replaced. However, a thin client depends on network access to the server, which is not available aboard airliners or any other location without network access.

This approach can be coupled with strong authentication as such Single sign on.

[edit] Some major laptop thefts

[edit] 2007

8.8.07 Stolen Laptop With 519 Citibank Student Loan Corporation Customers

8.6.07 - Verisign Stolen Laptop, Unknown Number of Current and Former Employees Affected

A laptop computer containing sensitive, personally identifiable information was stolen from a Verisign employee's car. The persons affected by this incident are current and past Verisign employees.

8.2.07 - Capital Health (Canada), Stolen Laptops, 20,000+ Affected

Four laptop computers were stolen from staff desks while secured to the desks with cable lock devices in a secure building. The thieves were able to enter the building, dislodge the cable locks and remove the computers during evening hours of May 8.

[edit] 2006

An unencrypted hard drive containing names, addresses and Social Security numbers of American Institute of Certified Public Accountants (AICPA) members was lost when it was shipped back to the organization by a computer repair company. Potentially 330,000 members were affected.
A laptop that belonged to an Ernst & Young employee was stolen from a vehicle. The computer contained personal information of 243,000 Hotels.com customers.
Two Federal Trade Commission laptops were stolen out of a locked car when staff attorneys took them home to work on a lawsuit. As a result, names, addresses and Social Security numbers of 110 people were exposed to thieves.
American International Group, a major insurance company, became responsible for private data of 970,000 potential customers when their file server and several laptop computers were stolen from its Midwest offices.
An Equifax Inc., company laptop was stolen from a travelling employee. Information compromised included employee names and Social Security numbers.
13,000 District of Columbia employees and retirees were put in danger of identity theft when a laptop belonging ING U.S. Financial Services was stolen from an employee’s home.
A laptop containing debit card information and Social Security numbers of 65,000 persons was stolen from YMCA’s seemingly safe administrative offices.
Personal data of 26.5 million U.S. veterans was on a laptop taken from the home of a U.S. Department of Veterans Affairs employee.
Four laptop computers containing names, Social Security numbers, and addresses of 72,000 customers were stolen from the Medicaid insurance provider Buckeye Community Health Plan.
A Boeing employee’s laptop was grabbed at an airport, compromising 3,600 employees Social Security numbers, addresses and phone numbers.

[edit] 2005

Stolen UC Berkeley laptop exposed personal data of nearly 100,000^[1]

[edit] Laptop tracking software

[edit] See also

[edit] References

^ Stolen UC Berkeley laptop exposes personal data of nearly 100,000By MICHAEL LIEDTKE, AP Business WriterTuesday, March 29, 2005.
^ Adeona
^ AsseTrax
^ BackStopp Laptop and data theft protection
^ Absolute Software
^ CyberAngel Security Solutions, Inc.
^ [1]
^ PC-Trak from GadgetTrak
^ LoJack for Laptops.
^ MacTrak
^ MyLaptopGPS
^ nTracker
^ PC PhoneHome
^ ExoTrack and Remote Kill by EXO5

[www.assettmate.com]

[edit] External links

3 Ways To Protect Your Laptop - information and tips for laptop security
Theft and Loss Protection for Linux Laptops and Notebooks - includes useful tips
The spy who lost me - laptop thefts from the British Ministry of Defence
2005 CSI/FBI Computer Crime and Security Survey - statistics and information about computer crime
Breach Blog- Constantly updated list of data breaches, most of which are laptop thefts
Musatcha.com Laptop Theft Prevention - Software-based alarm that uses the built-in hard drive protection accelerometer to sense motion
LaptopTheft.org- News and resources for victims and businesses regarding laptop theft
assettmate.com- free worldwide database for serial numbers

[berkeley2005-0] Stolen UC Berkeley laptop exposes personal data of nearly 100,000By MICHAEL LIEDTKE, AP Business WriterTuesday, March 29, 2005.

[adeona-1] Adeona

[AsseTrax-2] AsseTrax

[backstopp-3] BackStopp Laptop and data theft protection

[Computrace-4] Absolute Software

[cyberangel-5] CyberAngel Security Solutions, Inc.

[FailSafe-6] [1]

[gadgettrakpc-7] PC-Trak from GadgetTrak

[lojack-8] LoJack for Laptops.

[gadgettrak-9] MacTrak

[mylaptopgps-10] MyLaptopGPS

[ntracker-11] Tracker

[PhoneHome-12] PC PhoneHome

[EXO5-13] ExoTrack and Remote Kill by EXO5

[1]

[2]

[3]

[4]

[5]

[6]

[7]

[8]

[9]

[10]

[11]

[12]

[13]

[14]

Laptop theft

From Wikipedia, the free encyclopedia

Contents

[edit] Best practices against laptop theft

[edit] Inside protection

[edit] Physical protection

[edit] Centralization of laptop data

[edit] Some major laptop thefts

[edit] 2007

[edit] 2006

[edit] 2005

[edit] Laptop tracking software

[edit] See also

[edit] References

[edit] External links

Views

Personal tools

Navigation

Search

Interaction

Toolbox