Nationwide - Millions at risk ?

ashm1

http://news.bbc.co.uk/1/hi/programmes/moneybox/6160054.stm

nbbradshaw

The data commissioner AND the FSA will be jumping up and down on top of their heads!!!

The Chairman, Chief exec and Chief Operarating officer should be hauled over the coals, if not resign!!!

There is NO excuse for anyone having access to live data outside of a controlled and monitored company infrastructure.

Rikki

I have an account with them and I am concerned.

We are told to protect ourselves and look at what these muppets go and do.

Why are peoples personal account detail doing on an employee's laptop?

KTF

It was stolen 3 months ago and I haven't seen anything different happen to my account so I am not worried.

Rikki

KTF wrote:

It was stolen 3 months ago and I haven't seen anything different happen to my account so I am not worried.

Mines a postal account so I don't check it very often. Will now though. :mad:

Bernard_Coleslaw

I wonder if the scrotes who pinched the laptop in the first place realised what they'd got? To them, it was probably just another bit of swag that they'd have disposed of as soon as possible.

What are the odds that they wiped the drive/cannibalised it for spares/otherwise disposed of it?

Nevertheless, a bit careless of the NW employee, who was probably operating outside of his official guidelines (where I work, you are just not allowed to take customer data outside of a controlled environment, and I'm sure it's the same at NW).

Having said that, I wonder how many other banks, buidling societies, etc are now running around to make sure their staff are doing what they should be doing with customer data and company laptops?

I suspect it's just a case that NW were unlucky in that it was one of their employees it happened to first. Let's not be so certain that everyone else was 100% secure!

A_Nice_Englishman

When I worked for a large financial company the data on staff laptops was encrypted and a very long password had to be entered before they would even boot up.

If the password was forgotten the employee had to bring the laptop in, connect it to the company network, phone us in the IT department and identify themselves by answering a secret question. Only then could we reset the password.

I really don't understand why there was personal data on the Nationwide laptop at all.If the employee had an extract from the company database it should have been 'anonymised' so that no records could be linked to particular customers.

ManAtHome

Regardless of whether anything has happened on any of the accounts it should make you concerned about past and future security.

Either they don't have appropriate data protection procedures in place, or they are obviously easy to circumvent. Who knows what has taken by former employees or what they've passed on to external IT or marketing companies?

steady__eddie

KTF wrote:

It was stolen 3 months ago and I haven't seen anything different happen to my account so I am not worried.

I have noticed over the last week that when I have successfully logged on to internet banking, a new screen appears which says "The last time that you logged on was ", a time and date is then shown followed by, "If this is incorrect, please contact us here" (or words to that effect) followed by a link.
I wonder if this was a contingency measure or just part of an ongoing security exercise ?

ailuro2

My Nationwide card was recently used fraudulently, so was my s-i-l but we both got new ones and it didn't cost us anything. Nationwide's fraud dept are investigationg,but they didn't seem overly surprised on the phone.

I just put it down to them dealing with issues like these everyday,not anything else that had happened.

Now I'm wondering a bit more...:rolleyes:

CopperPlate_2

Sounds a bit worrying - especially as NW bang on about security on their website and not revealing customer numbers, passwords, etc. But again, it's a case of "do as I say, not as I do" when it comes to banks and other financial insitutions.