Commentaries and Analyses – Page 723

Firm That Exposed Breach Of ‘Billion Passwords’ Quickly Offered $120 Service To Find Out If You’re Affected

Posted on August 6, 2014 by Dissent

It’s certainly in the interest of any security firm to to portray the state of cybersecurity as dire to make their wares more appealing, and that’s something any reader should keep in mind when reading quotes from a security professional. But this is a pretty direct link between a panic and a pay-out for a…

NIST Unveils Security, Privacy Control Assessment Guide Draft

Posted on August 5, 2014 by Dissent

Anna Forrester reports: The National Institute of Standards and Technology has released a draft guidance for federal agencies, contractors and the intelligence community to evaluate the privacy and security controls used on federal information systems and information technology networks NIST said Friday that the “Assessing Security and Privacy Controls in Federal Information Systems and Organizations: Building Effective Assessment Plans” document (SP…

Data Breaches And Notifications: A Contrarian View? Or More Of The Same?

Posted on August 5, 2014 by Dissent

AlertBoot writes: The Wall Street Journal has an article on how certain executives are questioning the value of notifying the general public on company data breaches. The pay-walled article notes that there are valid reasons against more transparency. The thing is, most of these so-called reasons are self-serving – which is why 47 states have laws requiring…

600 Retailers Ensnared in Major New Malware Attack, Cybersecurity Firm Says

Posted on August 1, 2014 by Dissent

Sam Frizell reports: The number of businesses ensnared in a new malware attack revealed in a Department of Homeland Security report this week may run to six hundred, according to a cybersecurity firm that helped DHS prepare the report. Hackers are using point-of-sale (PoS) malware to steal consumer payment data, including credit and debit card…

Ottawa reports 101 privacy breaches since April

Posted on August 1, 2014 by Dissent

Alex Boutilier reports: The federal government has quietly logged 101 breaches of Canadians’ private information over the last four months, the Star has learned. Numbers released by Privacy Commissioner Daniel Therrien’s office reveal his office was informed of a privacy breach an average of almost once a day since April 1. The majority of these…

UK: Review of the impact of the ICO’s civil monetary penalties

Posted on July 25, 2014 by Dissent

Have civil monetary penalties (CMP) for data protection breaches had any impact in the U.K.? The Information Commissioner’s Office has had the authority to issue such penalties since April 2010 for serious breaches of the Data Protection Act (DPA), and since May 2011 for serious breaches of the Privacy and Electronic Communications Regulations (PECR). From…