Julian Hattem reports: Data security will be back in the spotlight on Wednesday, when a House Financial Services subcommittee hears from top law enforcement, consumer advocacy and industry experts. The hearing will be the fifth Congress has held since Target revealed late last year that a hacker had stolen millions of users’ information during the…
Category: Commentaries and Analyses
Brokers Want To Thwart Finra Plan To Collect Client Data
Dan Jamieson writes: The brokerage industry is hoping to head off a Financial Industry Regulatory Authority proposal floated late last year that would have the regulator capture and retain a huge amount of client account data for compliance purposes. Meanwhile, individual investors are complaining that the Finra plan looks like something cooked up by the…
Cybersecurity in the Golden State: How California Businesses Can Protect Against and Respond to Malware, Data Breaches and Other Cyberincidents
The California Attorney General’s Office has issued a report, Cybersecurity in the Golden State: How California Businesses Can Protect Against and Respond to Malware, Data Breaches and Other Cyberincidents. Here’s the Executive Summary: Executive Summary Relatively small investments in cybersecurity preparedness can yield significant risk reductions. Every business in California should follow the steps summarized below,…
Breach Blind Spot Puts Retailers on Defensive
Brian Krebs writes: In response to rumors in the financial industry that Sears may be the latest retailer hit by hackers, the company said today it has no indications that it has been breached. Although the Sears investigation is ongoing, experts say there is a good chance the identification of Sears as a victim is a false alarm…
Personal information managed by EPA is at risk, IG finds
Kelly Cohen reports: Better safeguards are needed to protect personal information managed by the U.S. Environmental Protection Agency, according to an inspector general’s report. Even though the agency is required by federal law to have privacy protection procedures in place, EPA doesn’t, according to the report. Read more on Washington Examiner.
Minnesota data breach law demonstrates risks of knee-jerk reactions
I just shook my head yesterday when I heard about a proposed law in Minnesota that would require breach notification within 48 hours of discovery, the offer of free credit monitoring for one year, and golly gee, a $100 gift card that would be valid for one year if the breached entity was a retailer. Apparently I…