Eric M. Friedman of Stroz Friedberg argues that rushing data breach notification may aid the criminals and cause greater harm to the very consumers we are trying to protect by notification. He writes, in part: One of the most important and time consuming tasks is scanning the massive corporate network for evidence of intrusion. These…
Category: Commentaries and Analyses
Criminal Attacks Are Now Leading Cause of Data Breach in Healthcare, According to New Ponemon Study
The healthcare industry is experiencing a surge in data breaches, security incidents, and criminal attacks—exposing millions of patients and their medical records—according to the latest Ponemon Institute study, sponsored by ID Experts®, the Fifth Annual Benchmark Study on Privacy & Security of Healthcare Data. The study reveals that criminal attacks in healthcare are up 125 percent since 2010…
Are you closing the door fast enough?
According to a recent survey by IS Decisions, 75% of businesses leave themselves open to infosecurity breaches from former employees by not following strict post-employment processes to ensure employees no longer have access to information. FreshBusinessThinking.com has more on the survey. Now add in the risks of employees who know they will be leaving their jobs…
Tiversa’s CEO responds to former employee’s testimony in FTC v. LabMD
Tiversa CEO Robert Boback has responded to the testimony of a former employee, Richard (“Rick”) Wallace at yesterday’s hearing in FTC v. LabMD. In a statement sent to this site, he writes: What was probably lost on most people in the audience was that Wallace testified that HE downloaded the 1,718 file (the LabMD file in…
Former Tiversa employee takes the stand in FTC v. LabMD, claims Tiversa falsified data presented to FTC and Congress (updated)
Update: The transcript of Rick Wallace’s testimony is now available online, here. At the time this post was written, only an unofficial transcript was available. After months of delay while immunity was sought and obtained for a former Tiversa employee, Rick Wallace finally took the stand today in FTC v. LabMD. And as LabMD’s CEO Michael…
FDIC OIG publishes results of audit of personally identifiable information in owned real estate properties
Buckley Sandler LLP writes: On April 28, the FDIC’s Office of the Inspector General published a report – The FDIC’s Controls for Identifying, Securing, and Disposing of Personally Identifiable Information in Owned Real Estate Properties– regarding its audit of the agency’s internal controls of personally identifiable information (PII) in owned real estate (ORE) properties, which it…