Thanks to the New Hampshire Attorney General’s Office for posting breach notices online:
Student Loan Xpress, Inc. reported (pdf) that the service provider for their student loans, American Education Services, inadvertently transmitted personal information on student loans to another lender that AES also has contracts with. The information may have included names, addresses, Social Security numbers, dates of birth and information specific to certain student loan accounts. No totals were provided, but 49 NH residents were affected.
Children’s Hospital Boston reported (pdf) that a laptop stolen from a clinical office in November 2008 did contain some personal information, after all. The personal info came to light after a review of the unencrypted laptop by IT staff searched the employee’s email records to see what might still be in the laptop’s cache.
Motorola’s Enterprise Mobility Solutions (Symbol) notified (pdf) the state on February 6 that it had “recently determined” that its Software Technology Center website had a security vulnerability that “may have allowed unauthorized parties to access the personal information of six New Hampshire residents. The personal information of concern includes names, contact information, payment card numbers and payment card expiration dates. The payment card transactions at issue took place during the 2000 -2005 timeframe (Symbol Technologies, Inc. acquired by Motorola in 2007).” The total number of individuals affected by the vulnerability or whose data may have been accessed was not reported.
Through their lawyers, Revenue Assurance Professional, LLC notified (pdf) the state that they “recently learned that a former employee, without authorization, obtained private information including at least one social security number. That same individual, now under police investigation, may have viewed” personal information including names, addresses, dates of birth, and social security numbers. The company was unsure as to the date of the security breach.