KVAL reports: Hackers breached the security a computer server containing the names, phone numbers and employee ID numbers of current and former Eugene School District employees, the district said Tuesday. The server in question did not contain other personal information but was attached to servers that contain Social Security numbers and other sensitive data, the…
Author: Dissent
Heartland breach shows why compliance is not enough
Jaikumar Vijayan reports: […] The [Heartland] intrusion led to the “stark realization that passing a PCI security audit does not make a company secure,” said Avivah Litan, an analyst at research firm Gartner Inc. “This was known well before the breach, but Heartland served as a big pail of ice water thrown on the face…
Today’s burning question
How many new strains of malware were identified in 2009? (a) 12,186,379 (b) about 18 million (c) over 25 million Answer: (c), according to PandaLabs. Read more on InfoWorld.
More on the HITECH-mandated breach reports on HHS
Several weeks ago, I initiated an inquiry about the breach reports that I expected to see on HHS’s web site. Under the new HITECH Act provisions, covered entities experiencing breaches involving the unsecured PHI of 500 or more patients are required to report the incident to HHS – if the incident meets the “harm threshold”…
(update) Penn State malware incident affected Schuylkill campus
The Associated Press reports that the previously unidentified Penn State campus affected by a malware breach is its branch campus in Schuylkill County.
Hackers May Have Unearthed Dirt on Stanford
Brian Krebs writes: In early 2008, while federal investigators were busy investigating disgraced financier Robert Allen Stanford for his part in an alleged $8 billion fraudulent investment scheme, Eastern European hackers were quietly hoovering up tens of thousands customer financial records from the Bank of Antigua, an institution formerly owned by the Stanford Group. […]…