This incident has 0 proposed changes. Know of details that have changed? Submit them Showing Incident 1804

SUMMARY

Outside firm employee steals documents or data containing names and Social Security numbers of current and former employees
Records	5,400
Record Types	SSN NAA
Breach Type	Fraud Se
Data Family	Unknown
Source	Inside - Malicious
Organization	Imaging Solutions & Services Inc.
Other Affected/Involved Organizations	Norfolk Southern Corp.
Lawsuit?	NO/UNKNOWN
Data Recovered?	NO/UNKNOWN
Arrest?	NO/UNKNOWN
Submitted By:	d2d

Date	Event
2007-12-01	Incident Occurred
New Timeline Item For Incident Occurred Date Reference URL Spam Check: Are you human?
2008-10-29	Incident Discovered By Organization
New Timeline Item For Incident Discovered By Organization Date Reference URL Spam Check: Are you human?
2008-12-19	Organization Reports Incident
New Timeline Item For Organization Reports Incident Date Reference URL Spam Check: Are you human?
None. Add Data	Organization Mails Notifications
New Timeline Item For Organization Mails Notifications Date Reference URL Spam Check: Are you human?
None. Add Data	Records Recovered
New Timeline Item For Records Recovered Date Reference URL Spam Check: Are you human?
None. Add Data	Lawsuit Filed
New Timeline Item For Lawsuit Filed Date Reference URL Spam Check: Are you human?
None. Add Data	Arrest Made
New Timeline Item For Arrest Made Date Reference URL Spam Check: Are you human?

records	date	organizations
8,000	2006-05-18	American Red Cross
3,448	2008-09-25	AmeriCredit Financial Services, Inc.
3,990	2009-02-02	Best Buy

Address: United States
Have a better address for this incident? Suggest it!

No known costs for this incident.

Ponemon Institute Direct Costs Estimate ¹

$324,000.00

Note that these estimates are based on the Ponemon Institute's 2009 direct costs figures from their 2009 Annual Study: Cost of a Data Breach. We multiply $60.00 by the number of records to obtain this figure. Keep in mind that depending on the breach, the direct costs are not always suffered by the breached organizations. In the case of credit card number breaches, the direct costs can often be suffered by banks and card issuers. Also note that this is only an estimate.

add details to this primary source Description

Filename	Source	Researcher	Incident IDs
VA_12172008_norfolk_southern_corp.pdf	Virginia Attorney General	jkouns	<a href='/incidents/show/1804'>1804</a>
Records	File Date	Uploaded	Updated
1536	2008-12-17	2009-02-03	04 Mar 08:57
Excerpt
STDLEY A;l5llN.tr· lggritmg LOS ANGHES toot K STREET, rtw 'BRJSSELS NEW YORK S I E Y] V»’i\0HlNGTON. D C. 200G5 { cAi;O SAN =nAN;;;g.;(; I (2o2· 735 5000 I _},;L\|_;.\;, $__iAJ._.GMm (202; FBG 57...

add details to this primary source Description
North Carolina Data Breach Notification : Theft of documents being digitised contained personal information.
Filename	Source	Researcher	Incident IDs
20081217_norfolk_southern.pdf	North Carolina Department of Justice, Consumer Protection Division	d2d	<a href='/incidents/show/1804'>1804</a>
Records	File Date	Uploaded	Updated
415	2008-12-17	2009-06-13	05 Aug 11:20
Excerpt
North Carolina Security Breach Reporting Form Pursuant to the Identity Theft Protection Act of 2005 Name of Business Owning or Licensing Information Affected by the PLEASE SUBMIT FORM T0: Breach; No...

add details to this primary source Description
Massachusetts Data Breach Notification : Norfolk Southern - ISSI was hired to convert paper pension files to electronic format. Some employees of ISSI may have stolen some of this information.
Filename	Source	Researcher	Incident IDs
20081217_norfolk_southern_corp_MA.pdf	Massachusetts Attorney General	d2d	<a href='/incidents/show/1804'>1804</a>
Records	File Date	Uploaded	Updated
2	2008-12-17	2009-08-08	24 Aug 18:02
Excerpt
SIDLEY ausnn LL¤ spnme. · tos Ancstss SME, AU SHN LL, 1sm K smear, n vv. saussats new vena wasnnncron, nc. zones cnrcaco sm raanclsco SI ` (mi was sooo DALLAS snnnenm qzuzi rss 8711 mx ramlkruar...