According to the New York’s breach and notification Act, it was required that RIT notifies the
possibly ‘affected’ individuals, so Dave Ballard informed Public Safety via mail
(NOTIFICATION).
• A setup was put in place to trigger an alert whenever the stolen machine connects with the
internet as all laptops owned by RIT are configured to reach auditing servers. This is a
benefit of the asset management system.
• The manager of Technical services Francesco charged Dave Ballard to retrieve the serial
numbers of the stolen laptops, reports were made to the Rochester Police, RITs Safety
Office and pawn shops in case sale is intended.
• A software program was installed to search for 9-digit numbers (possibly SSN’s or
Student ID Numbers) and 16-digit numeric strings (possible credit or debit card numbers)
and the fact that students or staff of RIT at risk of Identity Theft was ruled out, but the
Personally Identifiable Information (PII) of the Dean and family were found on the
machine.
• They setup a new laptop for the Dean but because his backup is not automated but
manual, he did not have backup for two months but was able to still retrieve important
data using LANDesk an asset management application which maintains a record of each
authorized user’s configuration.
According to the New York’s breach and notification Act, it was required that RIT notifies the
possibly ‘affected’ individuals, so Dave Ballard informed Public Safety via mail
(NOTIFICATION).
• A setup was put in place to trigger an alert whenever the stolen machine connects with the
internet as all laptops owned by RIT are configured to reach auditing servers. This is a
benefit of the asset management system.
• The manager of Technical services Francesco charged Dave Ballard to retrieve the serial
numbers of the stolen laptops, reports were made to the Rochester Police, RITs Safety
Office and pawn shops in case sale is intended.
• A software program was installed to search for 9-digit numbers (possibly SSN’s or
Student ID Numbers) and 16-digit numeric strings (possible credit or debit card numbers)
and the fact that students or staff of RIT at risk of Identity Theft was ruled out, but the
Personally Identifiable Information (PII) of the Dean and family were found on the
machine.
• They setup a new laptop for the Dean but because his backup is not automated but
manual, he did not have backup for two months but was able to still retrieve important
data using LANDesk an asset management application which maintains a record of each
authorized user’s configuration.