WASHINGTON - A large scale data theft has come to light after the Department of Veterans Affairs revealed that 26.5 million records of veterans including their Social Security numbers and birth dates were stolen from the home of a VA employee who had taken the data home without proper authorization.
The burglary occurred on May 3, according to an unidentified source quoted by The Washington Post. The stolen data includes that of all veterans discharged after 1975 and those discharged before 1975 who filed their claims with the Department after that date. "As a result of this incident, information identifiable with you was potentially exposed to others," said Jim Nicholson, the secretary of veterans' affairs in a letter that is being sent to all veterans at risk.
He added that there was no evidence that the data was being used for any nefarious activities. "It's highly probable that they do not know what they have,'' he told reporters. ''We have decided that we must exercise an abundance of caution and make sure our veterans are aware of this incident. I want to emphasize there was no medical records of any veteran and no financial information of any veteran that's been compromised."
Officials acknowledged that the VA employee who took the data home was violating the policy, but Department spokesman Matt Burns did not reveal the identity of the culpable employee. Officials said that the VA inspector general's office and the FBI are investigating the incident. Attorney General Alberto Gonzales reassured veterans and said there was "no reason to believe at this time that the identities of these veterans have been compromised."
Wile officials are seemingly wanting to put a lid on the whole affair, Beth Givens, the director of Privacy Rights Clearinghouse said that the matter was worrying, "There is no telling what kind of path the data is going to take," she said, adding that the combination of names, Social Security numbers, and dates of birth "means that 26.5 million people could — could — become victims of identity theft."
The VA has been severely criticized since the breach was disclosed Monday. "If the government is going to tell private companies that they have to secure Americans' personal and financial data, then it has to set a much better example itself," said Senator Charles E. Schumer of New York.
