Over on FierceFinanceIT, we regularly discuss IT security measures at financial services companies.

Banks are  under constant cyber attack these days, pressured daily to safeguard customer information. But while IT security measures generate lots of chatter, banks cannot afford to go light on traditional security measures aimed at preventing employees from inadvertently releasing private information.

A good reminder comes from the on-going investigation by the state of Connecticut into Wells Fargo over the possible falsification of financial information by people seeking food aid in the wake of Hurricane Irene. Subpoenas were issued to the bank and copies of those subpoenas were forwarded to customers. Unfortunately, the subpoenas contained the social security numbers of multiple individuals, according to Reuters.

A Wells Fargo spokesman told the news service that the bank will offer them the option of signing up for identity theft protection, a standard response in the wake of a bank breach. It was obviously a mistake to send out such information and the legal, compliance and other teams involved should be embarrassed. There may be other consequences.

For more:
- here's the article

Related articles:
New e-book: A holistic approach at fraud management   
Booz Allen lists top 10 cyber security trends for financial firms   
Consider delaying IT security fixes