Joseph Lazzarotti of Jackson Lewis writes: On August 18, 2010, the Connecticut Insurance Commissioner issued Bulletin IC-25 which mandates that entities within its jurisdiction notify the Department of Insurance of any “information security incident.” This post provides a brief summary of this new requirement. […] What is an “information security incident”? Under this Bulletin, an…
Author: Dissent
Info privacy still lags in India: Deloitte
Though Indian organisations have gradually started to realise the importance of data privacy and security focus on employees and other internal security, information privacy is lagging behind in India, according to a survey by Deloitte Touche Tohmatsu India. Almost half of the Indians experienced at least one internal security breach during the past one year…
Connecticut Insurance Commissioner Announces Data Breach Notification Mandate
Joseph Lazzarotti of Jackson Lewis writes: On August 18, 2010, the Connecticut Insurance Commissioner issued Bulletin IC-25 which mandates that entities within its jurisdiction notify the Department of Insurance of any “information security incident.” This post provides a brief summary of this new requirement. […] What is an “information security incident”? Under this Bulletin, an information security…
The Rite Aid Scandal: Health Records Still Treated as Commodities
Billy Wharton writes in CounterPunch: The mega drug store chain Rite Aid recently agreed to pay a $1 million fine to stave off a full investigation by the Federal Trade Commission (FTC) into practices that may have compromised customer records. The agreement was prompted by news reports that Rite Aid stores in several locations had…
De: Drugstore Schlecker customer information exposed on web
German drugstore chain Schlecker has suffered a major online data breach, with the names, addresses and profiles of about 150,000 customers being exposed on the internet, the company announced Friday. A spokesman for the firm confirmed media reports that the personal data of online customers had for an unspecified time found their way onto the…
3 areas where FUD needs to stop
Joan Goodchild writes: There is a new breed of animal appearing in the infosec community, according to Dr. Jimmy Blake, chief security officer for Mimecast, a cloud-services company based in London, and host of the blog Cloud Computing and Bad Behavior. The new breed is what he calls the “attention monger” (he actually used a…