Commentaries and Analyses – Page 771

Most malware breaches not disclosed – survey

Posted on November 9, 2013 by Dissent

I generally avoid re-posting press releases as they tend to be self-serving, but some contain interesting data. From ThreatTrack: ThreatTrack Security today published a study that reveals mounting cybersecurity challenges within U.S. enterprises. Nearly 6 in 10 malware analysts reported they have investigated or addressed a data breach that was never disclosed by their company….

A good day for the FTC in federal court?

Posted on November 7, 2013 by Dissent

I didn’t get to Newark for oral argument on Wyndham’s motion to dismiss the FTC’s complaint about their data security, but from early media coverage tonight, it sounds like things went pretty well for the FTC. From the quotes provided in coverage by the Wall Street Journal and Bloomberg Businessweek, it sounds like Judge Salas…

Are we getting blasé?

Posted on November 6, 2013 by Dissent

This morning, an excited tweeter urged people to nominate Adobe’s breach to the Guiness Book of World Records because it reportedly involved 150 million usernames and hashed passwords. I responded that there was already a breach on the books involving 150 million – the Shanghai Roadway D&B Marketing Services Co. Ltd breach, so at 150M,…

NetDiligence 2013 report: “Cyber Liability & Data Breach Insurance Claims”

Posted on November 1, 2013 by Dissent

NetDiligence has released its 2013 report on “Cyber Liability & Data Breach Insurance Claims” based on actual claims submitted: This report summarizes our findings for a sampling of 145 data breach insurance claims, 140 of which involved the exposure of sensitive data in a variety of sectors, including government, healthcare, hospitality, financial services, professional services, retail and…

Resource: Cyber Arrest Tracker

Posted on November 1, 2013 by Dissent

Lee Johnstone has created another resource for us all: a cyber arrest tracker. The chart includes the individuals’ names, screen names, criminal indictments, and other details. The tracker already has 83 entries in it. Check it out and bookmark it here. URL updated to reflect new dedicated domain.

When you try to confirm or disconfirm a claimed hack, Thursday edition

Posted on October 31, 2013 by Dissent

As regular readers know, I often try to confirm or disconfirm claimed hacks before just repeating what I see or read elsewhere. And I generally use a notification feature to let me know whether my requests have been delivered and/or read. Here’s an example of why people may be frustrated or just say “screw it”…