Texas Comptrollers' Office Posted Millions of Texans' Personal Info Online

By Tracey E. Schelmetic April 13, 2011

While news that a retailer or financial services company has had a data breach that put private consumer information at risk is pretty much a monthly occurrence these days, it would seem that the government isn't immune from data loss, either. In this case, however, it's not about theft, but about human error. The comptroller for the State of Texas this week began notifying millions of people that their personal data – including names, addresses and social security numbers – had been posted to a public server, where it was available for as long as a year, in some cases, reported Information Week.

“I deeply regret the exposure of the personal information that occurred and am angry that it happened,” said Texas comptroller Susan Combs in a statement. “I want to reassure people that the information was sealed off from any public access immediately after the mistake was discovered and was then moved to a secure location. We take information security very seriously and this type of exposure will not happen again.”

A criminal investigation has been launched by both the Texas state attorney general and the FBI. A state spokesperson told The Dallas Morning News that an unspecified number of people were fired after the breach was discovered on March 31, 2011. The breach was reportedly discovered less than two weeks ago when other folders were being scanned in the server.

The 3.5 million breached records include 1.2 million records, posted in January 2010, of education employees and retirees from the Teacher Retirement System of Texas. In addition, 2 million records from the Texas Workforce Commission (TWC), which provides unemployment benefits to Texas residents, were posted in April 2010. Finally, 281,000 records from the Employees Retirement System of Texas, involving state employees and retirees, were posted in May 2010, said InformationWeek.

Data breaches, both accidental and criminal, are becoming more common as more personal information goes online. According to an InformationWeek article from July of last year, the Identity Theft Resource Center (ITRC) recorded 341 individual data breaches during the first six months of 2010, but hundreds more went unreported, said the organization. In addition, for 46 percent of breaches, the number of records potentially affected weren't disclosed, and for 38 percent, no cause was disclosed. The ITRC said that some states now harbor a “protected breach list” that is not made public at all, or is only accessible by exercising the Freedom of Information Act.


Tracey Schelmetic is a contributing editor for TechZone360. To read more of Tracey's articles, please visit her columnist page.

Edited by Janice McDuffee

TechZone360 Contributor

SHARE THIS ARTICLE
Related Articles

Is 5G a Spectrum-eating Monster that Destroys Competition?

By: Fred Goldstein    6/15/2018

To hear the current FCC talk about it, 5G mobile service is the be-all and end-all of not only mobile communications, but the answer to most of the co…

Read More

FX Group Makes the Red Carpet Shoppable with Blockchain-Based mCart Marketplace-as-a-Service

By: TMCnet News    6/14/2018

mCart by Mavatar announces the launch of the world's first blockchain-based decentralized mCart marketplace by the FX Group.

Read More

Judge Gives AT&T-Time Warner Deal Green Light

By: Paula Bernier    6/12/2018

Federal judge Richard Leon gave the $85 billion deal the green light today - and without any requirements to sell off any parts of the company. He als…

Read More

A New Foundation for Evolving Blockchain As a Fundamental Network Technology

By: Arti Loftus    6/12/2018

There are now thousands of blockchains, and unless you are a cryptophile, you won't recognize most of them.

Read More