NYPD faces ID theft risk after data stolen from pension fund

A recent case of a data breach by an erstwhile trusted employee of the NYPD points to a couple of interesting points. First, it again highlights the risk companies suffer from employees who become disgruntled in some way. In these troubled economic times, employees are more likely to become so especially if they are laid off. In addition, it is noteworthy that the department did not know if the data were actually stolen or otherwise distributed to others. However, in May 2007, they had implemented a data encryption policy, and in the circumstances of this case, it was determined that employees after that date were not at risk. Therefore this case reinforces the importance of adopting an encryption policy. NYPD faces ID theft risk after data stolen from pension fund