Summary from Protection of Personally Identifiable Information (PII) Audit by City of Austin auditors (November 2013): The objective of this audit was to evaluate the process for protecting PII that is collected and/or stored by the City. The audit scope included the City’s policies and procedures related to the protection of PII for Fiscal Year…
Category: Commentaries and Analyses
Payment Card Industry Security Standards Council Issues Updates to Data Security Standard
Earlier this month, the Payment Card Industry Security Standards Council (PCI SSC) released Version 3.0 of the Payment Card Industry Data Security Standard (PCI DSS), which includes several enhanced security requirements that will affect how businesses protect payment card data in their systems. The updated standard calls upon businesses to take a more active role in…
Update: Arrest in Sachem schools data breach (update1)
There has been another development in a data breach involving the Sachem Central School District on Long Island (previous coverage here and here). As I commented previously, it sounded to me like they suspected an insider breach but it wasn’t clear if it was an employee or a student hacker they suspected. Well, now we…
The Ramifications of a Security Breach
Another survey. Scott Koller writes: From hackers to stolen laptops, security breaches have been on the rise. While most businesses are aware of the dangers associated with potential security breaches, few truly understand the full ramifications. Calculating the time and money spent on investigations and notifications is fairly straight forward but measuring the damage to…
Authorities investigating cybersecurity incidents targeting Obamacare website
The Chicago Tribune reports: U.S. authorities are investigating a series of cybersecurity incidents targeting the HealthCare.gov website at the center of President Obama’s healthcare law, a U.S. homeland security official told Congress on Wednesday. Roberta Stempfley, acting assistant secretary of the Department of Homeland Security’s Office of Cybersecurity and Communications, said her department was aware of “about…
UAE Muslim Brotherhood trial: ‘Secret data stolen from flash drive’
Seen in a report by Abdulla Rasheed on a case in Abu Dhabi: The first witness, an officer at the National Security Department, said one of the accused stole some important secret information related to state security from his flash drive. He said he was also a member of the board of Hatta Sports Club…