Thanks to DLP (data loss prevention) software, the FDIC caught 44,000 customer records getting copied to a USB drive on an employee’s last day of work. She legitimately used the customer records normally as part of her day-to-day and while copying off personal files, she picked a pack of oopsie-daisies, and the folder with customer records went with her.
The FDIC’s security operations team caught on to this, performed an incident response and less than a week later, was able to get the thumb-drive back. They notified Congress as a precautionary measure and had the former employee sign an affidavit that she did not sell the data on the deep & dark web.
The FDIC has now banned all forms of removable media to prevent deliberate and accidental loss of customer data. It’s nice when a story ends on a good note.
Read the whole story on American Banker