The Australian Privacy Foundation has responded to Australia’s draft breach notification law. You can read their comments here. Not surprisingly, I agree with their concerns.
Category: Commentaries and Analyses
ICO FoI response reveals massive rise in data breach fines
Caroline Donnelly reports: The Information Commissioner’s Office (ICO) has stepped up its enforcement activities, by issuing double the number of data breach fines in 2012-2013 as it did in the previous 12 months. This is according to data obtained via a Freedom of Information (FoI) request by digital comms vendor ViaSat. […] Between March 2012…
Honor among (credit card) thieves?
A Michigan State University criminologist dug into the seamy underbelly of online credit card theft and uncovered a surprisingly sophisticated network of crooks that is unique in the cybercrime domain. The thieves, Thomas Holt found, run an online marketplace for stolen credit data similar to eBay or Amazon where reputations drive sales. Thieves sell data…
Verizon releases it 2013 Data Breach Investigations Report
Verizon has released the Verizon Data Breach Investigations Report (DBIR). You can download the Executive Summary here and the full report here. The DBIR analyzes data from 19 organizations — covering more than 47,000 reported security incidents and 621 confirmed data breaches from the past year. Because VZ has the cooperation of so many organizations,…
UK: Dumped pupil records and lost ipads among Stoke City Council data breaches
As always, we need to consider whether breaches are actually increasing or if it’s a matter of breach awareness and disclosure increasing. In any event, there are too many avoidable “human error” breaches, it seems: Pupil records found dumped in a country lane and 20 missing ipads are among dozens of Stoke City Council data…
Eight years of data breaches in higher education
Courtesy of Open-Site.org, used under Creative Commons License: Click on image for larger version. For more breaches from the education sector, including k-12 breaches, see DataLossDB.org.