Sourcefire has had a breach that is probably a bit embarrassing for a company known for security solutions. It seems a company laptop with employees’ Social Security numbers was stolen on November 6, and according to their notification letter to the New Hampshire Attorney General’s Office, the laptop was (only?) “password-protected.”
Their letter didn’t indicate whether the laptop was supposed to have been encrypted, nor how many employees are affected by the theft. The firm’s investor relations page indicates that Sourcefire has 500 employees.
The letter also doesn’t indicate where the laptop was located at the time of the theft, so we don’t know if the laptop was stolen from the firm’s offices or from an employee’s home or vehicle, or some other location.
I’ emailed the firm’s legal counsel over the weekend to try to get additional details, but did not receive any response.