Commentaries and Analyses – Page 476

Hacker lifts $1 million in cryptocurrency using San Francisco man’s phone number, prosecutors say

Posted on November 21, 2018 by Dissent

Kate Rooney reports: Losing cellphone service is inconvenient. But in some cases, it also might mean you’re getting hacked. San Francisco resident Robert Ross, a father of two, noticed his phone suddenly lose its signal on Oct. 26. Confused, he went to a nearby Apple store and later contacted his service provider, AT&T. But he…

UK: More than 700 school data breaches in a year

Posted on November 21, 2018 by Dissent

Martin George reports: The number of data breaches reported by schools increased by almost a quarter in just two years, new research shows. Schools in the UK reported 703 data breaches to the Information Commissioner’s Office (ICO) in 2016-17, compared with 571 in 2014-15. A freedom of information request by accountancy network UHY Hacker Young showed…

FTC Calls For Data Breach Law To ‘Clarify’ Its Authority

Posted on November 20, 2018 by Dissent

Ben Kochman reports: The Federal Trade Commission has called on Congress to “clarify” its authority to regulate data breaches, while responding to the White House’s request for advice on how the administration should handle consumer privacy. In comments posted last week to the U.S. Department of Commerce‘s National Telecommunications and Information Administration, the FTC said…

NYSED Security Over Critical Information Systems (Follow-Up Audit by NYS Comptroller)

Posted on November 20, 2018 by Dissent

From the Office of the New York State Comptroller, this follow-up report on the New York State Education Department shows ongoing concerns that have not been addressed at all or only addressed partially: Issued: November 13, 2018 Link to full audit report 2018-F-17 Purpose To determine the extent of implementation of the two recommendations included…

The GDPR: When do schools need to report data breaches?

Posted on November 19, 2018 by Dissent

Luke Irwin reports: …. A major concern is the GDPR’s requirement that organisations report certain types of data breach to their supervisory authority within 72 hours of becoming aware of the incident. It’s one of the toughest rules to meet, but this blog provides you with all the details you need. Read more on IT Governance…

Prepping a Mock Notification Letter Before a Cybersecurity Breach Hits

Posted on November 16, 2018 by Dissent

Stephen Moore writes: No one in the security industry should be surprised to know that the financial and reputational impact of a breach is severe. According to a recent Harris Poll, studies show that 75 percent of consumers won’t do business with a company if they don’t trust it to protect their data. If the…