Doesn't it just make sense that if the breach happens at the retails location the they should be accountable for the costs. It's not the banks fault that a retailer didn't comply with standards that were put in place and why should they have to take all the costs. At some point the Banks fee will haver to increase as they spend more and more on data breaches.
http://www.mercurynews.com/opinion/ci_25332720/data-breaches-retailers-and-others-should-shoulder-some
Thursday, March 13, 2014
Transporting Sensitive Data
Who stores data on Compact Disc's anyway?
No one should be able to copy data on to any type of removable media.
http://time.com/23466/nyc-transit-agency-has-data-breach/
No one should be able to copy data on to any type of removable media.
http://time.com/23466/nyc-transit-agency-has-data-breach/
Affordable Care Act at the cost of possible Data Breaches
While the Affordable Care Act brings healthcare to all who need it, there is a price to pay.
The Act expands healthcare to so many that the amount of data sharing has increased dramatically, it has also made it harder to regulate who has what data and what they need to do with it.
http://www.healthdatamanagement.com/news/annual-survey-shows-security-progress-and-new-concerns-47421-1.html
The Act expands healthcare to so many that the amount of data sharing has increased dramatically, it has also made it harder to regulate who has what data and what they need to do with it.
http://www.healthdatamanagement.com/news/annual-survey-shows-security-progress-and-new-concerns-47421-1.html
Indiana University - Inadvertently Exposed 146,000 records
Can't we just make a blanket statement that all sensative data must be encrypted at rest. There will always be data that is lost but if we just follow that simple guide it will be far less painful.
http://www.edtechmagazine.com/higher/article/2014/03/146000-indiana-university-student-records-potentially-exposed
http://www.edtechmagazine.com/higher/article/2014/03/146000-indiana-university-student-records-potentially-exposed
Wednesday, March 12, 2014
Data Encryption the Corner Stone to solve the Data Breach epidemic
Monday, March 10, 2014
Possible Data Lose? There was a breach unsure if they took anything.
Vermont Health Connect had a breach in December.....Yes December 2013, and today we hear "It was somebody coming in through an unlocked front door."
They know that someone from "ROMANIA" accessed their system in December but it was a test system no real data in it. If no real data was in question why is it news?
http://digital.vpr.net/post/state-says-personal-data-safe-after-breach-involving-vermont-health-connect
They know that someone from "ROMANIA" accessed their system in December but it was a test system no real data in it. If no real data was in question why is it news?
http://digital.vpr.net/post/state-says-personal-data-safe-after-breach-involving-vermont-health-connect
Data Breach Notification Problems - Isn't the Breach the Problem?
I know they are having problems coming up with a consensus on how to notify data breach victims. Isn't the real problem that fact that there was a breach in the first place, once the breach has happened the Banks cover all the charges and you can always get new cards. Shouldn't we be spending more time looking at a way to sot breaches from happening or at least making the data useless to the hackers.
http://www.boston.com/business/technology/2014/03/09/consensus-notifying-victims-data-breaches/1U4ZQnPWS6zRSS4GFdNVMJ/story.html
http://www.boston.com/business/technology/2014/03/09/consensus-notifying-victims-data-breaches/1U4ZQnPWS6zRSS4GFdNVMJ/story.html
Slow and steady go the Data Breach Fines
Skagit County had a breach back in 2011 and violated several HIPAA privacy, security and breach notification rules.
And today March 10th 2014 they are fined $215,000 for the incident that happened almost 3 years ago. What sort of punishment is that?
http://www.ihealthbeat.org/articles/2014/3/10/first-county-level-hipaa-fine-issued-la-county-reports-data-theft
And today March 10th 2014 they are fined $215,000 for the incident that happened almost 3 years ago. What sort of punishment is that?
http://www.ihealthbeat.org/articles/2014/3/10/first-county-level-hipaa-fine-issued-la-county-reports-data-theft
Statista becomes the latest Statistic
While this breach creates so many great blog titles it doesn't seam to be very damaging for a data lose stand point. The data lose looks to be just emails and passwords to the site, Yes you will get some great spam sent to you if you are effected but no new CC needed just a better spam filter.
No one is safe No company is been excluded from these attacks.
http://www.net-security.org/secworld.php?id=16496
No one is safe No company is been excluded from these attacks.
http://www.net-security.org/secworld.php?id=16496
University data breaches are the tip of the iceberg
While Universities scramble to plug holes in their networks and not become the next Maryland or Indiana, other industries need to be looking long and hard at their own networks.
Whats next maybe your local Gym or some other sort of membership driven industry, they are typically not that technical so it stands to reason that they may have some security holes.
http://techpageone.dell.com/industries2/education/data-breaches-challenge-university-data-security/#.Ux2-EuddVJM
Whats next maybe your local Gym or some other sort of membership driven industry, they are typically not that technical so it stands to reason that they may have some security holes.
http://techpageone.dell.com/industries2/education/data-breaches-challenge-university-data-security/#.Ux2-EuddVJM
PII shouldn't be stored on Local PC's
When someone steals a laptop and it has Sensitive Data it is a breach even if they use the data or not. My question is why risk it and allow the data to be stored on the device in an unencrypted form. Allow your users to connect to your data over the network and don't let them store the data in any form on their devices.
http://www.tweaktown.com/news/36101/168-000-at-risk-after-computers-stolen-health-data-compromised-in-la/index.html
http://www.tweaktown.com/news/36101/168-000-at-risk-after-computers-stolen-health-data-compromised-in-la/index.html
Secure your Data and your job will be Secure.
At the end of the day when something goes wrong it's always the bosses fault and they are the ones that take the fall. Hackers now have so much power, if they decide to target your company and your an IT executive there is a good chance you will be let go following the breach.
The Target breach is a great wake up call for all IT exec's, secure your data or your job won't be too secure.
http://www.journalgazette.net/article/20140310/BIZ/303109992/1031
The Target breach is a great wake up call for all IT exec's, secure your data or your job won't be too secure.
http://www.journalgazette.net/article/20140310/BIZ/303109992/1031
Use Cash to Pay for Cabs in Chicago. OK but what about everywhere else?
I get that after the data breach in Chicago we need to possibly use cash to pay for Cabs when in town. But the breach it's self didn't give me much comfort for the rest of the Cab industry, should I be using cash every time I get in a cab?
Does this also mean any town car or limo services?
http://www.tweaktown.com/news/36046/visiting-chicago-use-cash-instead-of-credit-or-debit-to-pay-for-cabs/index.html
Does this also mean any town car or limo services?
http://www.tweaktown.com/news/36046/visiting-chicago-use-cash-instead-of-credit-or-debit-to-pay-for-cabs/index.html
Sunday, March 9, 2014
There are Benefits of being a victim of a Data Breach
I'm not sure I would call them Benefits but yes being made to setup new auto payments, changing your password & free credit reporting are great.
But you should always change your password or a regular basis, this should be a routine you get into once a month. As for credit reporting, this will become a standard banking practice soon as they will offer it as a standard feature to all customers.
http://www.dailyfinance.com/2014/03/08/3-reasons-thank-target-losing-your-credit-card-number/
But you should always change your password or a regular basis, this should be a routine you get into once a month. As for credit reporting, this will become a standard banking practice soon as they will offer it as a standard feature to all customers.
http://www.dailyfinance.com/2014/03/08/3-reasons-thank-target-losing-your-credit-card-number/
Subscribe to:
Posts (Atom)