RiskBased Security reports: We have been so busy here at Risk Based Security recently that we neglected to release our latest Data Breach QuickView report to the public last month! The report already shows that 2014 is the highest year ever for exposed records. The 1,922 incidents reported during the first nine months of 2014 exposed over…
Category: Commentaries and Analyses
INFORMATION SECURITY: Additional Actions Needed to Address Vulnerabilities That Put VA Data at Risk – GAO
Highlights of a new GAO study also addressing VA infosecurity: What GAO Found The Department of Veterans Affairs (VA) has taken actions to mitigate previously identified vulnerabilities, but it has not fully addressed these weaknesses: Incident response: VA took actions to contain and eradicate the effects of a network intrusion detected in 2012, but it could…
Audit: Portland, Oregon fails to comply with credit card data security standards
Fox12 in Oregon reports:- Portlanders who use their credit card to pay for parking meters and other city services may want to take a look at the city auditor’s latest report on payment card data security. The audit found Portland fails to comply with the industry’s data security standard when it comes to payments made…
Link Found in Staples, Michaels Breaches
Brian Krebs reports: The breach at office supply chain Staples impacted roughly 100 stores and was powered by some of the same criminal infrastructure seen in the intrusion disclosed earlier this year at Michaels craft stores, according to sources close to the investigation. Multiple banks interviewed by this author say they’ve received alerts from Visa and MasterCard about cards impacted in the breach at Staples,…
How to get me to definitely not remove a link. Fsck off, LinkRemovalHelp.com.
If you’re going to hire a firm for SEO optimization or to help with negative reports about your firm, I hope you hire a good one. From my inbox (you may have to read it more than once to really get the full flavor): From: “Link Removal” <[email protected]> Subject: Action Required: Penalized Google Domain Date: Sun, November 16,…
INFORMATION SECURITY: VA Needs to Address Identified Vulnerabilities – GAO
The highlights of a new GAO report, INFORMATION SECURITY: VA Needs to Address Identified Vulnerabilities: While the Department of Veterans Affairs (VA) has taken actions to mitigate previously identified vulnerabilities, it has not fully addressed these weaknesses. For example, VA took actions to contain and eradicate a significant incident detected in 2012 involving a network intrusion,…