DataBreaches.Net

Menu
  • About
  • Breach Notification Laws
  • Privacy Policy
  • Transparency Report
Menu

Famous Dave’s employee data stolen (update 2)

Posted on April 30, 2010 by Dissent

Here we go again…. another seemingly avoidable data theft.

A Minnetonka-based employee of Famous Dave’s left some baggage in the car of a companion, including a work-related laptop computer containing a report with unencrypted employee information. As Famous Dave’s reported to the New Hampshire Attorney General’s Office by letter on April 16, the laptop was part of what was stolen from the car on March 21. The theft was reported to the police promptly.

An internal investigation to determine what information was on the laptop indicated that it contained names and Social Security numbers for employees who worked for the company on or after November 1, 2009 and a few who left the employment of the company in 2008 and before November 1, 2009. The report contained personal information for 2 residents of New Hampshire as well as former employees of the North Country group of restaurants located in the following New Jersey and New York locations: Brick Township, Hamilton (Mays Landing), Metuchen, Mountainside, New Brunswick, Smithtown, and Westbury. The total number of employees affected by the breach was not reported.

The company offered its employees free credit monitoring services.

The firm’s letter to the Attorney General did not indicate whether the employee had violated company policy by having unencrypted data on a laptop and/or by leaving the laptop in an unattended vehicle. Which brings me to another pesky point: should a company be allowed to claim that they have all kinds of safeguards in place but that they can’t guarantee protection against criminal conduct if the data were not even encrypted and had been left in a car?

I don’t know what the situation was with this case, but I’m getting tired of seeing claims of rigorous safeguards when a laptop with unencrypted personal or financial information is stolen from an unattended vehicle, aren’t you? I called Famous Dave’s to inquire as to whether the employee had complied with existing policies, but have not received a return call as of the time of this publication.

Update 1: This breach was reported to the NYS Consumer Protection Board on April 19, according to their log. At the time, Famous Dave’s indicated that 702 NYS residents were affected.

Update 2: This breach was reported to Maryland on April 16, and the report indicates that 695 Maryland residents were affected.

Category: Breach IncidentsBusiness SectorTheftU.S.

Post navigation

← Scottrade sues hacker
Guernsey: Data protection law amended to include prison time →

Now more than ever

"Stand with Ukraine:" above raised hands. The illustration is in blue and yellow, the colors of Ukraine's flag.

Search

Browse by Categories

Recent Posts

  • A state forensics lab was leaking its files. Getting it locked down involved a number of people.
  • CoinMarketCap Hacked, Scrambles to Remove Malicious Wallet Verification Popup
  • Montana Attorney General launches investigation into Lee Enterprises data breach
  • AT&T gets preliminary approval for $177 million data breach settlement
  • Aflac notifies SEC of breach suspected to be work of Scattered Spider
  • Former JBLM soldier pleads guilty to attempting to share military secrets with China
  • No, the 16 billion credentials leak is not a new data breach — a wake-up call about fake news (Updated)
  • Tonga’s health system hit by cyberattack (1)
  • Russia Expert Falls Prey to Elite Hackers Disguised as US Officials
  • Proposed class action settlement in In re Netgain Technology litigation

No, You Can’t Buy a Post or an Interview

This site does not accept sponsored posts or link-back arrangements. Inquiries about either are ignored.

And despite what some trolls may try to claim: DataBreaches has never accepted even one dime to interview or report on anyone. Nor will DataBreaches ever pay anyone for data or to interview them.

Want to Get Our RSS Feed?

Grab it here:

https://databreaches.net/feed/

RSS Recent Posts on PogoWasRight.org

  • The Markup caught 4 more states sharing personal health data with Big Tech
  • Privacy in the Big Sky State: Montana’s Consumer Privacy Law Gets Amended
  • UK Passes Data Use and Access Regulation Bill
  • Officials defend Liberal bill that would force hospitals, banks, hotels to hand over data
  • US Judge Invalidates Biden Rule Protecting Privacy for Abortions
  • DOJ’s Data Security Program: Key Compliance Considerations for Impacted Entities
  • 23andMe fined £2.31 million for failing to protect UK users’ genetic data

Have a News Tip?

Email: Tips[at]DataBreaches.net

Signal: +1 516-776-7756

Contact Me

Email: info[at]databreaches.net

Mastodon: Infosec.Exchange/@PogoWasRight

Signal: +1 516-776-7756

DMCA Concern: dmca[at]databreaches.net
© 2009 – 2025 DataBreaches.net and DataBreaches LLC. All rights reserved.