Ah, I’m having flashbacks to the days when some of us debated whether the TJ Maxx breach would have any significant impact and how could we determine impact. Bruce Schneier cites a research report,“Long-term market implications of data breaches, not,” by Russell Lange and Eric W. Burger. From key findings: While the difference in…
Category: Commentaries and Analyses
CareFirst makes final push for Supreme Court to hear breach case
Jessica Davis reports: Maryland-based CareFirst has filed a final appeal to the U.S. Supreme Court to hear its data breach case, arguing that without a high court review, companies in every sector will be hit with a “flood” of data breach lawsuits in the future. The appeal stems from a decision by the U.S. Court…
MailChimp Found Leaking Email Addresses
Tara Seals reports: MailChimp, the bulk email company responsible for sending millions of newsletters, promotional mail and other mass communiques every day, has been leaking respondents’ email addresses. Security researcher Terence Eden found what he termed “an annoying privacy violation,” adding that the issue can expose personal information. The issue is this: When a respondent…
25 per cent of hackers don’t report bugs due to lack of disclosure policies
A friend tweeted to me tonight: .@PogoWasRight you have been beating this drum and saying this for a long time now… years. “report reveals they are instead ‘frequently ignored or misunderstood”. Now u have a report! 😉https://t.co/WYu94gQQfu — Commissioner Miner (@fanCRTCProfling) January 19, 2018 Indeed we do. Carly Page reports: One in four ethical hackers…
New data breach reporting rules will help prevent cyber crime, say IT experts
Peter Dinham reports: A majority of Australian IT decision-makers believe reporting of data breaches to regulators will help prevent cyber crime. Surveyed by global security vendor Palo Alto Networks, 79% of IT decision-makers agreed that reporting breaches to regulators should be mandatory and 69% believed reporting of data breaches to regulators would help prevent cyber…
FTC: Privacy & Data Security Update: 2017
The Federal Trade Commission (FTC) has released its Privacy & Data Security Update: 2017. The report is organized by major privacy enforcement actions in 2017, data security enforcement in 2017, and other topics of significant concern such as fair credit reporting, children’s online privacy and do not call. Apart from the Lenovo, Uber, and D-Link…