|
|
|
Last Updated: Nov 17th, 2008 - 12:30:30 |
News
Guide to Handling Personal Information Security Breaches
Guide to Handling Personal Information Security Breaches
The Australian Privacy Commissioner, of the Government Privacy Commission, (do we have one of those in the US? I think not.) has released a new guide as part of a series first released this summer. This guide, entitled "Guide to Handling Personal Information Security Breaches" follows the guide entitled "Australian Privacy Law and Practice" origionally released in August.
Nov 10, 2008, 11:04
News
A California Paradox
A California Paradox...
Well, new quarter, new articles, same old happenings it seems.
California is a state with one of the (supposedly) most stringent data breach laws in the country. One would think then, that the result would be a lower rate of ID thefts, breaches etc. One would be wrong. Very wrong. In a report published by the FTC, one location in California is the "ID Theft Capitol" of the country. Yes, that's right - one place in the land of the harshest penalties for breaches, is the worst place to whip out your credit card, ID, checkbook or other identifying generator of personal information. The California paradox.
Oct 28, 2008, 14:35
News
Information Security Forum Releases Update "Best Practices" Guide
New Best Practices Guide for Security Releasesd; Includes updated Identity and Access Management
The Information Security Forum (ISF), a nonprofit IT security group,
today announced the availability of its updated Standard of Good
Practice, a free benchmark that organizations can use to assess and
reduce risks related to information systems.
| |
The Standard is updated at least every two years in order to:
|
| • |
respond to the needs of leading international organisations |
| • |
refine areas of best practice for information security |
| • |
reflect the most up-to-date thinking in information security |
| • |
remain aligned with other information security-related standards, such as ISO 27002 (17799), COBIT v4.1 and PCI/DSS |
| • |
include information on the latest ‘hot topics’. | |
Oct 22, 2007, 14:41
News
Canada to Close Data Theft Loophole
Oct 16, 2007, 15:37
News
Gartner Says Data Theft Costs will Increase
Gartner Says the Cost of a Sensitive Data Breach Will Increase 20 Percent per Year Through 2009
Financially motivated targeted attacks are becoming more prevalent and
new vulnerabilities continue to be reported, but 90 percent of these
attacks can be avoided without requiring any increase in security
spending, according to Gartner, Inc. However, ensuring one’s enterprise
is not part of the 10 percent requires implementing security processes
to monitor and manage vulnerabilities and provide strong identity and
access management capabilities
Oct 16, 2007, 15:29
News
Office of the Privacy Commissioner of Canada, Report of an Investigation into the Security, Collection and Retention of Personal Information
Report of an Investigation into the Security, Collection and Retention of Personal Information
This report, released by the Privacy Commissioner of Canada, is an in-depth analysis into the TJX/TJ Maxx security breach, and offers strong suggestions on how other companies may learn from their mistakes. In addition, the Commissioner determined that TJX/TJ Maxx violated PIPEDA in several instances, including the collection of drivers license information "without a specific business purpose" and the retention of that inappropriately collected information.
For companies in Canada, PIPEDA provides set guidelines on what information can be collected, for what purpose that information can be collected, and how long that information can be retained, and the Privacy Commissioner's Office monitors compliance with these provisions. Violators are subject to fines, additional monitoring and more.
Oct 10, 2007, 10:42
News
'Laptop security? Never heard of it...'
'Laptop security? Never heard of it...'Despite rising levels of laptop theft and high-profile instances of data loss, businesses are failing to understand the need to encrypt their hard drives or better protect sensitive data.
Research conducted by silicon.com has found worrying levels of
insecurity where it comes to laptops, with 63 per cent of respondents
saying their company does not encrypt the data on their laptops.
Furthermore, 67 per cent of respondents said their companies do not
provide laptop locks to reduce the risk of opportunist theft.
May 11, 2007, 08:54
News
Snatched the taxman's laptop? Don't get too comfortable
April 05, 2007 (IDG News Service) -- The Internal Revenue Service
(IRS) may not be doing a very good job of encrypting data on its laptops, but
it does have a way to recover its lost equipment.
In fact, thieves looking to steal from the Department of the Treasury may
find themselves behind bars, thanks to tracking software used by the IRS to
contact investigators whenever a laptop is stolen.
Apr 13, 2007, 10:14
News
IRS head: All laptops to be encrypted within weeks
IRS head: All laptops to be encrypted within weeks
April 09, 2007 (IDG News Service) -- After an auditor found serious
security problems in the way it handled sensitive data on laptops, the Internal
Revenue Service said it will have all laptops encrypted within the next few
weeks.
Apr 12, 2007, 10:06
News
Turbo Tax Error
Turbo Tax Error
A Nebraska woman recently discovered a shocking flaw with a website
thousands of people use to prepare their taxes. Instead of taking
advantage of this potential gold mine for identity thieves, she is
calling attention to it to protect other taxpayers.
In her laptop, Jennifer discovered a key to the backdoor of some tax returns filed on line through Turbo Tax.
Apr 10, 2007, 12:01
|
|
|
|
