BASKING RIDGE, N.J. – Although many security experts predict that the most likely data breach threats organizations will face in 2013 include cloud exploits, mobile device attacks and all-out cyber war, “Verizon Data Breach Investigations Report” (DBIR) researchers have reached a far different conclusion: The most likely threats involve authentication attacks and failures, continued espionage and…
Category: Commentaries and Analyses
Cheng v. Romo and Applying Unauthorized Access Statutes to Use of Shared Passwords
Orin Kerr writes: The federal computer crime statutes punish unauthorized access to a computer. As regular readers know, courts are hopelessly divided on what this language means, and in particular what makes an access to a computer authorized versus unauthorized. In Cheng v. Romo, 2012 WL 6021369 (D. Mass. Nov. 28 2012), Judge Casper authored an…
Update and commentary on SCDOR breach: Where would they be without media coverage?
I’ve been pretty critical of the South Carolina Department of Revenue breach and the state’s incident response. Some will think my criticism is well-deserved, while others may feel I’ve been too harsh. But it is now six weeks since we first learned of the breach and here is what hasn’t happened so far: Notification letters…
Yes, sometimes it’s as bad as we fear
In the process of researching something else, I stumbled across an audit of a NYS agency with the grim title, “Mobile Devices with Sensitive Information are not Secure.” By the time I got done reading and browsing other audits, I totally forgot what I was looking for in the first place, but here’s what I…
For PC Virus Victims, Pay or Else
Nicole Perlroth writes: Kidnappers used to make ransom notes with letters cut out of magazines. Now, notes simply pop up on your computer screen, except the hostage is your PC. Read more on The New York Times. I was interested to read that some researchers estimate that 2.9% of compromised computer owners pay out and…
Some Australians may be too trusting
How many reports have we seen where people purchasing used drives or devices find personal information or data from the previous owner? Lots of times, right? So why am I covering this on this blog today? Well, because the findings from one study may qualify for today’s “This Takes the Cake” Award. Aleisha Orr’s news…