Community Newsletter: Q&A: My laptop was stolen, what concerns should I have?
- 8/23/07 4:58 PM
My laptop was stolen, what concerns should I have?
by jaayceee - 8/21/07 1:10 AM In reply to: lock up your valuables; don't take 'irreplaceable' on trips by jposhea3jposhea3's tips were really useful. The best part for me was why travel with all your data and not use an external hard drive to leave all your sensitive information on it.
thanks,
J. Chinoy.
India.
question for next week - loss of pc.
by nogard0 - 8/3/07 8:09 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
1) there is a (bios?) system password that without it the computer connot be booted. this can be accessed with the computers (bios?) setup screen.
2) there are programs .. though they do not prevent loss they can help find the computer and possibly catch the thief using it. one was called pc alert (or alert pc). it ran in the background and whenever the computer is used online i think it calls in and says it is here. or maybe one could be online at the headquarters and locate where the computer with is by its unique serial number. today i bet that a gps installed in the computer can loacte it. looks like there might be a current one for companies is called computracecomplete info can be found at http://www.absolute.com/computracecomplete/how-computracecomplete-works.asp it is a program thta reside in the computer ... it can also allow sensitive data to be erased remotely. and one for personal computers is at http://www.lojackforlaptops.com/.
3) as for the hotel being responsible ... you might need to read their rules and regulations ... i bet there is clause that says they are not responsible for items left in the room.
bios password is not much of a defense
by jposhea3 - 8/3/07 8:13 PM In reply to: question for next week - loss of pc. by nogard0folks,
the BIOS password doesn't really help you if the attacker has the laptop 'permanently' (ie it helps if I walk up to the machine in your office while you're getting coffee, but so does a locked screen. It does *not* help if I have the device in my possession and can do anything I want to it, like open it up with a screwdriver)
http://tech.yahoo.com/gd/protecting-your-data-from-laptop-lifters/153189
-james
Dangers from stolen laptop
by hchilds - 8/3/07 8:17 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
Dave,
You will indeed be in for a problem if a savvy thief stole the laptops for use in identity theft, but odds are that he did not. These thieves often have inside help, and usually just fence off the clothes and machines for quick cash. As for now, you know the drill: change your accounts right away, and notify the three credit bureaus. You can quickly ask your credit card accounts to notify you of unusual activity.
For future reference, and for all laptop users, here are my suggestions for security:
1) back up ALL of your important data on extra hard drives (if too big to fit on DVD's). If you don't have a network at home, just get an external hard drive with enclosure. Do a backup daily like a religious experience.
2) Password protect, at the least, your laptop. From the administrator user, don't allow any access without proper sign on and passwords for yourself or any family member. Do not allow Guest accounts. But passwords will only deter the common thief from accessing your laptop; using them is a start, but there are further considerations.
3) You should consider encrypting your important financial data files and requiring passwords to access them. This really is the only protection if the savvy thief knows how to remove the HD from the laptop and access it in another machine (an easy image copy of the HD and he is in business). You will need Windows XP Pro to do this (or, I guess, the advanced versions of Vista). You will have to accept a mild slowdown during operation of your programs.
4) Much has been written about allowing cookies onto your hard drive. I would not trust them much on a laptop. I do not allow automatic sign on to any websites except my mail servers because I don't want any cookies with both my username and passwords on my HD. You might consider cleaning out the cache and cookie folder on your web explorer regularly (set it for automatic).
5) If you can't remember user names and passwords, then get a good program such as Password Plus to hold that data, and use a really strong password that you CAN remember to access that program.
6) If you travel as you do, consider using one of several of hardware protection devices, that require plugging the device into the USB port in order for the laptop to operate. This device, whatever you choose, goes with you in your pocket whenever you go out, like with your car keys or wallet. Again, this only deters the common criminal (see 3).
Everyone knows that security of this magnitude is a bit more time-consuming, but is required when laptops travel. Unfortunately, consider the experience of the VA and the FBI when their personnel lost hard drives and/or laptops with thousands of names on them. So far, I have received two letters from the VA, regarding two separate incidents of lost data files that have my name and personal data on them. I don't like it at all.
Lastly, is the hotel responsible? Good work if you can get it! It seems intuitive to me that security in the rooms is a responsibility of any lodging. I suspect they will certainly try to avoid any responsibility. However, I think they will usually make some settlement if you complain enough. Your homeowners insurance may cover some of the cost of replacing your machines. But if your data is lost, nothing can replace that.
The lesson learned from your story is two-fold: back up and practice good security!
Before your next horse, find out how to close the barn door.
by R. Neil - 8/3/07 8:22 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
Ouch! Yes, I would presume a very great possibility for identity theft – especially if any credit card, bank account, or social security data was on the laptop(s).
I am not a lawyer; however, most inns (motels, hotels, etc.) have posted a statement that “valuables should not be left in your room.”
You indicated that you “shut” your door; however, did you verify that the door latched when you closed it? (Many inns have doors that swing to, but do not completely close.) Some inns require you to personally lock your exit on leaving. In any case, I would ask, but not expect, the inn to cover my loss.
Future security concerns should include:
1. Consider creating a bootable USB flash drive, with a secured access (password?) to maintain all files with personal or financial data. (Carry that USB drive with you at all times on your keychain, in your purse, or however.)
2. Implement a secured access to the laptop(s), which means at least requiring a password for access to the laptop files. This could mean using a bootable USB flash drive to run the laptop (dongle, anyone?) and encrypting ALL data on the laptop.
3. If using an X86 laptop change from FAT-16/FAT-32 to NTFS file system. (Since WIN98SE2, that has been simple to do.)
4. Use secured USB flash drive to maintain all files with personal or financial data. (Again, carry that USB drive with you at all times on your keychain. Yes, there should be a backup USB drive secured elsewhere.)
5. Have a routine for data backup of all your data, especially before a trip. Store the backups away from the computer(s) – for example, keep your backups in a Safety Deposit Box at your local financial institute.
6. Encrypt any files, left on the laptop, which have personal or financial data.
disk boot failure
by anurags3 - 8/3/07 8:22 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
dear
first of all plz check the boot priority in the setup.or replace the disk. in the last if all above process u hav done then contact to hardware engg. for ur drive
Condolences on your loss...
by love_007amit - 8/3/07 8:30 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
First, I am going to stay out of the whole "Who's liable?" question. Too many different laws and questions there.
As for your stolen laptops, they were probably stolen for their intrinsic value, but I'd still put a fraud alert on all of my accounts (you can do it through the top three credit reporting agencies' web sites), and keep a close eye on all of my statements.
It's a shame about all of your data, especially the photos. This begs the question that I'm sure I know the answer to: Did you have backups?
Okay, for the future, here are my suggestions (they work well for me):
1. BACK UP YOUR SYSTEM
Purchase a large external (USB) hard drive to be used for backup only. Set a schedule that minimizes your loss between backups. I back up on every date that ends in "0" (i.e. three times a month). Just turn on the USB drive and run your backup program (I use the free Abakt program from http://www.xs4all.nl/~edienske/abakt/download.html), then turn off the drive. I also copy all photo/home video to DVDs; I keep one set and send another to my father. If I go on vacation, I put the external drive in my fire safe.
2. ENCRYPT YOUR DATA
I use the free and fairly simple TrueCrypt program (http://www.truecrypt.org). Create an encrypted volume on your machine's hard drive (or a USB flash drive, or a smaller, portable usb hard drive) and keep all sensitive data there. I keep my e-mail, financial info, and passwords on my portable USB hard drive and take them everywhere. If I lose the drive, my sensitive data is safely encrypted (I have this backed up too!).
It took the loss of 30 days of digital baby photos to make me backup-paranoid. I know your loss is much greater, but I hope it will spawn some new data safety habits.
Stolen Laptops
by cableghost - 8/3/07 8:32 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
Definately yes to the ID Theft Q and possibly yes to the responsibility question.
Want to receive a legal opinion...see the service that I use:
www.pplsuccess.com/info and www.pplsuccess.com/idt
Stolen Laptops Identity Theft
by DJHRVV - 8/3/07 8:34 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
There are various ways to keep a lap top safe. One is to purchase a cable lock that goes around any thing. It secures your laptop by locking the cable into the corner of your laptop. Most of the safty cables they have now days are made of aircraft stainless steel. Which is very hard to cut even for a good pair of bolt cutters. As far as your stuff on your hard drive, the only way it is safe is that either you had it password protected, or all the important data encrepted. If your data was encripted they would have to know the password in order to open the program and access the data. As far as your pictures go they are gone if the computer wasn't passworded. Matter of fact everything is gone if you didn't have a password to log on to your computer. Identity theft today is running rampid. Mostly because people today like the ease of doing all their banking on line. Which without the proper protection your identity can be gotten just by you going on line. A hacker can back door you and you wouldn't even know it. Then you would wonder why is your browser being redirected to some other site that you have never been to. The only way to keep your identity safe on your computer is to have everything encripted with a password protection. When you send your data over the internet it is encripted and the hacker can't get it because it would take him or her to long to figure out what type of program you used to encript your data. Having a good firewall and antispyware, virus and hijacker protection is mandatory these days to protect your self. I am behind 3 fire walls and all my data is encripted. I am the only one that knows the password, besides my wife to my computer. Never use your birthday or any common dates or names to make up a password. it must be unique.. You may as well kiss your laptops good buy. Because even if the law did find them, I would be willing to bet that everything is now gone. You should be contacting your bank and all your credit card companies of the loss of your computers. If you do buy a new one then you should know now to make it password protected and keep a cable laptop security device with it.
They also make a lock with out the cable that will fit the same small hole in the side of the laptop, you can get either combination of key type locks. Myself I use a combination type lock on my laptop.
I have 5 computers in my home and 2 laptops. Everything is backed up daily on to a server. You can also get places on line that you can upload your data to and they encript it for you and keep it on their servers. There is also external hard drives that can be used to back up your data and pictures. You can also back everything up on DVD's or CD's. It's your choise. There are so many ways now days to protect your self from criminals on the internet and outside the internet. I am sorry to hear that your laptops and everything else was stolen. I know what you are going through. My identity was stolen a while back, and now they will never get it again. I back everything up on a daily basis. Hope the authorities find your laptops for you. Hope you had the serial numbers handy. Good Luck and I hope you get everything back.
Hotel Theft
by briceone - 8/3/07 8:49 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
Hi
I am so sorry to hear of your plight.Several years ago it happened to me and my wife at a hotel in London also on a Satuday night.
We lost baggage.Briefcase and very expensive camera and equipment.
The hotel at first said that I should have put in the hotel safe. But they only save cash and small items. Anyway after a very determined fight They eventually paid up Everything amounting to nearly 2000 pounds.
Recently although slightly different I had a case with Hewlet Packard overa printer, Initiall they did not want to know.They eventuall gave a free replacement, but only after the following procedure was put in place. No need for expensive lawyers/attourneys.
IT is by using the media
Method
1 Make sure that all your facts are true and not exagerated.
2 Carefully prepare various statements specifically to match the media type
3 Contact them: News Papers, TV , Both Nationally and globally
4 Prepare Emails to send to everybody that you can think of
5 send the emails to all of their branches accross the Globe
6 Prepare a dedicated web site which points out the facts of the case.
7 Issue a period of time in which they can act.
8 In fact you are producing a public anti company dialogue
This soon brings their attention, because no company can accept bad publicity.
BUT you must be certain that what you say is fact, the truth, and please be careful not to mention anyones name without proof, because you may enter Libel situations.
With HP even the CEO came on the scene and he personally ordered the company to sort out in my favor.
It might sound very tedious to do this but It generally meets with success. Many Web services will help to especially when true and someone is not getting a fair deal.
I hope this lifts your spirits a little,and I wish you the best of luck in getting some good luck and early replacements.
God Bless
Prof. Brian Bevan
Laptop Theft
by genechristopher - 8/3/07 8:49 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
I work for a LARGE company in Norfolk and I work (IA) information assurance issues... I also (up till about 5 months ago) worked security (not related to computers) overnights (part time, i was bored) for one of the BIGGEST hotel chains in the country. The official policy of the hotel varies from place to place (as I am not able to speak for them) but it is my opinion that YES the hotel is liable for replacement.
I am hopeful of course that you both notified the Front Desk as soon as you noticed the problem with your theft AND you also notified the local police or sheriff and made out a report of theft.
Quite simply - the hotel chain IS liable for the safety and security of their guests and their belongings EVEN THOUGH they may have a disclaimer about not being responsible for theft of items. The simple fact (that the judge in court would be obliged to agree with) is that the hotel has an obligation to provide safety to their guests and belongings.
As to the theft of your data?? well, let me put it to you this way - you travel WITH your only source of data computations...?? if you did not already have a plan for data backups in place?? well, let that be a sour lesson that is ill learned...
Back up your data...!!! I have a 6 gig USB drive (i paid less than $30 for it on one of the fantastic web sites, like WOOT.com or TIGERDIREct.com - not an official endorsement - just that I shop here sometimes...) that I plug in and BEFORE i leave the office I make a 5 minute data dump to the drive. Your simple life being help in a laptop that you travel with??? Well, think about WHAT IF I LOST THIS TODAY????
We have already been educated on what to do about stolen credit cards and possible identity theft.. You can consider your laptop (that was stolen from your hotel room) a severe risk in loss of your identity...
You can recover though, so BREATH deeply and recover...
well, color me as Nata - as in "Nata's Corner" - i speak freely about what concerns your internet safety....
ANSWER FOR DAVE
by CO-SPRINGS-C0 - 8/3/07 8:51 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
THIS IS SO SIMPLE
FIRST::UPON NOTICING THE LAP TOPS MISSING YOU SHOULD HAVE NOTIFIED HOTEL SECURITY CALLED 911 AND FILED A POLICE REPORT
SECOND:: THE HOTEL IS LIABLE I HAD MY WATCH STOLEN REAL COOL JOKE WAS THE MAID WHO STOLE IT SLIGHTLY FORGOT ONE SMALL DETAIL MY NAME WAS ENGRAVED ON THE WATCH SINCE 1976 WHEN I GRADUATED IT WAS A GIFT
THIRD:: ALL LAPTOPS HAVE SERIAL NUMBERS AS WELL OTHER CLEAR IDENTIFYABLE NUMBERS ON THEM FROM THE MANUFACTERER IF YOU REGISTERED YOUR LAPTOP IT CAN BE REGISTERED AS STOLEN IF SOMEONE TRYS TO GET IT UPGRAGED OR UPDATED THEY HAVE TO USE THE SERIAL NUMBER ON THE LAP TOP TO INCLUDE OTHER CLEAR IDENTIFYABLE INFORMATION TO INCLUDE MOTHER BOARDS THE NEW LAPTOPS HAVE THE SAME GPS GIS TRACKING SYSTEMS ON THEM IN THEM AND EASILY CAN BE FOUND AS TO WHO HAS YOUR LAP TOP AND BY THE WAY THIS WAS ALSO ON 60 MINUTES WHERE THEY DID THE I-POD THEFT RING IN LAS VEGAS NEVADA AND ALL THE THEFTS WERE FROM 16-19 YEAR OLDS
FOURTH:: IN THE FUTURE AS HAS ALWAYS BEEN STATED CLEARLY BY LAW ENFORCEMENT OFFICERS THROUGH OUT UNITED STATES ALWAYS KEEP YOUR INFORMATION ON FLASH DRIVES OR OTHER DRIVES OTHER THAN LAPTOPS THIS PREVENTS PRIVATE INFORMATION FROM GETTING DISTRIBUTED SUCH AS LETTERS YOU MAY HAVE OTHER CONFIDENTIAL INFORMATION AS IF YOU WERE A PHYSCIAN SAME IDEA YOU WANT MEDICAL RECORDS CONFIDENTIAL THEFT WITH VA HOSPITAL MEDICAL RECORDS THAT WERE STORED ON LAP TOPS TO INCLUDE HIGHLY CONFIDENTIAL INFORMATION MARRIAGES SOCIAL SECURITY THINGS LIKE THIS
FIFTH:: A VACATION IS A VACATION IF YOU ABSOLUTELY MUST HAVE A LAP TOP USE THE HOTELS ALL OF THEM PROVIDE THEM TO GUESTS FREE OF CHARGE IN MOST CASES THERE ARE A FEW EXCEPTIONS
Identify Theft
by whbos - 8/3/07 8:54 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
As a victim of identity theft, I can certain identify with this problem. I had a $2,000 notebook computer stolen with not only the contents of the hard drive, but with my data DVD's in the case containing everything about me, my financial records, etc.
Most thieves usually want to pawn the computer off to get money for their drugs or whatever else. This may not always be the case, but I had to believe it and since it happened to me six years ago I haven't had any identity theft problems since then.
There's probably not much you can do about what has happened, but you can prevent it from happening again. Use an external hard drive to backup your information at home (financial, letters, photos, etc.) and when you go on vacation, don't bring this external hard drive with you. If you need some or all of this data on your travels, put it on a CD/DVD and carry it with you (in your wife's purse if necessary, or just don't. You're on vacation. Leave the damn things at home!)
Save backups of all your data on CDs/DVDs at home prior to leaving. If someone steals your laptop/notebook computer at least you can restore the data prior to your vacation. While on vacation if you have compiled a lot of information, think about uploading files (FTP or otherwise) to a home site provided by your email provider (most provide space for a website, but this doesn't prohibit you from uploading files. I do it all the time. You might have to invest in an FTP program like WS_FTP or another.).
Don't do the stupid thing like I did and keep DVD copies of everything in the notebook bag especially anything with confidential information on it. My notebook computer was my secondary computer, but occasionally I would do field work and needed that information. I didn't know some thug (*#@*^%) was going to steal it, and neither did you.
If you had one of those key cards to get in your door, then whoever stole your computers must have been an employee--or they climbed up from the outside to your balcony (if you had one). I'm sure the hotel has a "cover your ass" policy that says they're not responsible for theft or anything else. If you didn't call the police then and also report it to the hotel management then you may not have much of a leg to stand on. A police report is better than an idle threat to the hotel. If you tell them you're going to put it on the news (everyone says that), they'll still ignore you until you do.
Upscale means nothing nowadays. There are still creeps and turds working in upscale hotels--they just have to lie a little more to get the job.
I hope you cancelled your bank cards, accounts, changed passwords, usernames, social security number, etc. If you can remember anything that was on your computer you must change passwords especially for any online accounts where these a-holes can do any damage. That's the first thing to do.
If you're like me you want to believe the hard drives were wiped out. But you still have to think they are using your information for all the wrong reasons and stop they're identity theft in its tracks by canceling all your credit cards, bank accounts, etc.
I wish you good luck. There are a lot of creeps out there who care about nothing but themselves. Death to identity thieves!
Leaving sensitive data at home
by waldstille - 8/19/07 10:56 AM In reply to: Identify Theft by whbosYou and many others suggest leaving sensitive data on a hard disc at home. But it seems to me that there is at least as good a chance of a desktop computer and hard discs being stolen by a burglar as a laptop by a hotel thief: at least one can try to keep the laptop in sight even on trips.
The really interesting question then concerns not only laptops but all computers AND hard discs AND other storage devices such as DVDs. So it probably comes down to the question of how best to use encrypting programs, and which ones.
A protected hard disc seems a very good idea, but I for one am not even sure what that is. Is it a question of hardware or software?
As a Mac user, I am even less clear as to what my situation is. The information I've found in this forum discussion — interesting as it is — pertains mostly to PCs. The FIRST question for me is: how would someone get into my MacBook without my password? Would they use some kind of electronic device that figures out the password by trying all possible combinations (like devices one sees in movies that safe-crackers use)? Would they try to run the hard disc through another computer (I don't think that would work since they would still come up against the password).
It is certainly an interesting and important question, and I am grateful to you and to everyone else who contributed to the discussion here.
Hotel should replace
by juditte - 8/3/07 8:55 PM In reply to: My laptop was stolen, what concerns should I have? by Lee Koo (ADMIN)
I recently had chargers, ipods, axim etc stolen from a hotel baggage check room - A total of $2000 worth of electronics. I made a full report to the hotel and then when came home sent them an itemized list based on my purchase receipts. Took a bit of time but they paid me without any question. I should think that having laptops stolen from a locked room would be even more undeniable. Of course it does depend on the quality of the hotel.
As far as security for the future that is pretty tricky. When traveling I keep any really vital data on a USB key that stays with me while the programs stay on the laptop. I also keep it clean of any saved info on passwords and access codes. I never leave it without using a quick sweep of all temp files, cookies, history etc. Encryption of files, fingerprints and the like may deter a casual thief but a determined one who steals both your computers from a locked room will probably sell them to someone else and you'll have no idea where they end up.
Several years ago my home was broken into and all my computers stolen. The police advised me to change all my credit cards, bank accounts and the like. Also I put a hold on any credit transactions or new credit applications thru the 3 credit companies. If you send them the police report then they do it. You can get the info online (search for identity theft) or from the police. You should make a police report in the town where the theft took place. Two laptop computers are valuable enough that they will do it.
Don't risk identity theft - it is a special hell. Just deal with the hassle and get everything changed ASAP. It is best to visit your banks in person and have them physically give you new checks to your accounts etc. The cards you usually have to deal with on the phone. Then check everything online every day. I kid you not. This saved me from having one bank account completely drained through fraud. If you are very lucky someone will just wipe the drives and ignore your info but I wouldn't count on it.
Good luck.
Juditte
| Forum legend: | |
 |
Locked thread |
 |
Moderator |
 |
CNET staff |
 |
Samsung staff |
 |
Norton Authorized Support team |
 |
AVG staff |
 |
Windows Outreach team |
 |
Dell staff |
 |
Intel staff |
