Neil Roiter reports: Verizon Business is offering an security incident analysis service based on the Verizon Incident Sharing framework (VerIS), the foundation of the organization’s highly regarded annual Data Breach Investigation Report (DBIR). The aim of the service is to generate metrics of an organization’s security incidents over time to discover the root causes of…
Author: Dissent
Canada official: Staples resold hard drives with customer data
Galen Moore reports: …. According to Canada’s privacy commissioner, Jennifer Stoddart, the breaches affected laptop computers and flash drives, and compromised sensitive information including Social Insurance Numbers, and health card and passport numbers; academic transcripts; banking information and tax records. An audit conducted by Stoddard’s office examined 149 data storage devices marked for resale, and…
DHS official says ISPs would likely be covered by Obama cybersecurity plan
Gautham Nagesh reports: A top Department of Homeland Security cybersecurity official told lawmakers Internet Service Providers (ISPs) would likely be among the private-sector firms that would be subject to federal oversight under the White House’s proposed cybersecurity legislation. At a hearing in front of the Senate Judiciary Subcommittee on Crime and Terrorism, DHS acting Deputy…
(follow-up) FL: Holy Cross Hospital ID theft ring members plead guilty and are sentenced
Wifredo A. Ferrer, United States Attorney for the Southern District of Florida, and Henry Gutierrez, Special Agent in Charge, United States Postal Inspection Service, announced yesterday’s sentencing of Jimmy Lee Theodore, 27, of North Miami, following his plea of guilty to charges of wire fraud, unauthorized use of an access device (debit card), and aggravated identity…
Debit Breach Hits Ohio Accounts
Jeffrey Roman reports: June 21 Update: The recent breaches that affected dozens of Northeast Ohio banks and credit unions were most likely caused by the interception of CVV2 card security codes, says Mike Urban, senior director of fraud product management at FICO. “It’s not a skimming situation,” Urban says of the breaches which started in…
UK: Hacking suspect arrested
From the Metropolitan Police Dept. web site: Officers from the Metropolitan Police Central e-Crime Unit (PCeU) have arrested a 19-year-old man in a pre-planned intelligence-led operation. The arrest follows an investigation into network intrusions and Distributed Denial of Service (DDoS) attacks against a number of international business and intelligence agencies by what is believed to…