This site uses cookies. By continuing to browse this site you are agreeing to our use of cookies. Find out more.X

Regulator probes security lapse at Nationwide

Share this article:

The Financial Services Authority (FSA) is investigating a security lapse at Nationwide building society after a laptop computer containing sensitive customer data was stolen from an employee's home.

Both the FSA and Nationwide have refused to say exactly what was on the laptop, which was taken in a burglary in August. However, the building society confirmed it held customer information, but maintained that this did not include pin numbers, passwords or transaction details. According to Alan Oliver, head of external affairs at Nationwide, the device contained "limited customer information for market research purposes".

Nationwide insists that victims of identity fraud would not suffer financial loss, as the building society has a policy of reimbursing money stolen. A spokesperson said: "There has been no loss of money, and no chance of any customers suffering financial loss. If they are the innocent victim of fraud they will not lose out. The information on its own cannot be used for identity fraud."

Nevertheless, it's claimed that criminals could combine the personal data stolen with other customer information and use it for identity fraud.

It's reported that as a result of the theft Nationwide has clamped down on customer data being carried on staff laptops and has begun writing to all of its 11 million consumers outlining the security measures they need to take.

Although the building society was keen to play down the severity of its security lapse, the banking industry regulator - FSA - is probing the incident.

"We're continuing to discuss with Nationwide the incidence of a loss of data," said a FSA spokesperson. "Our principle concern is to minimise the risk to consumers."

Gary Clark, VP of EMEA, SafeNet commented: "Once again, a laptop containing confidential consumer data is stolen, and the need for stricter security for mobile devices is highlighted once more."

"‘Random thefts' or loss of laptops and other physical assets inevitably occur, however, if access to the data on these stolen items is protected, this information will remain protected and out of the reach of criminals."

Share this article:

SC webcasts on demand

This is how to secure data in the cloud

Exclusive video webcast & Q&A sponsored by Vormetric

As enterprises look to take advantage of the cloud, they need to understand the importance of safeguarding their confidential and sensitive data in cloud environments. With the appropriate security safeguards, such as fine-grained access policies, a move to the cloud is as, or more, secure than an on-premise data storage.

View the webcast here to find out more

More in News

Google and Facebook offer free cyber-security tools

Google and Facebook offer free cyber-security tools

Google and Facebook have both launched free open-source cyber-security tools this week, designed to help security professionals spot malware and cyber-attacks.

Mixed results for key Government cyber-initiatives

Mixed results for key Government cyber-initiatives

The Government's Verify scheme to confirm IDs is behind scheuduled uptake, but its CISP threat intelligence sharing scheme is ahead of target.

Hundreds of companies face 2,000 cyber-attacks in EU exercise

Hundreds of companies face 2,000 cyber-attacks in EU ...

The European Network and Information Security Agency (ENISA) conducted a 24-hour cyber-exercise in which more than 200 organisations from 25 EU member states faced virtual cyber-attacks from white hat hackers ...