Nationwide customers notified of breach, PI theft
Posted on 26 November 2012.
Nationwide, one of the largest insurance and financial services companies in the world, has been sending out letters to notify some of its clients about the compromise and potential compromise of their personal information following a recent breach.

"On October 3, 2012, a portion of our computer network that is used by Nationwide Insurance and Allied Insurance was criminally intruded upon by an unidentified criminal perpetrator. We discovered the attack that day, and took immediate steps to contain the intrusion. We believe that we successfully contained the attack through our responsive actions," the company claims.

Following an in-depth investigation, they discovered that the attacker had likely stolen some personal information from their systems, and a couple of weeks later they received confirmation of the identities and addresses of the individuals whose personal information they believe was compromised.

"Although we are still investigating the incident, our initial analysis has indicated that the compromised information included certain individualsí name and Social Security number, driverís license number and/or date of birth and possibly marital status, gender, and occupation, and the name and address of their employer. At this time, we have no evidence that any medical information or credit card account information was stolen in the attack," they say, adding that they have, of course, notified law enforcement about the attack, and that they have employed outside experts to help them analyze the impacted data and to identify affected customers.

The company is offering a free credit-monitoring and identity theft protection product for one year to all the notified individuals, but it is yet to share details on how many were affected in total.


Chrome extension thwarts user profiling based on typing behavior

Infosec consultant Paul Moore came up with a working solution to thwart a type of behavioral profiling. The result is a Chrome extension called Keyboard Privacy, which prevents profiling of users by the way they type by randomizing the rate at which characters reach the DOM.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Wed, Jul 29th