Wow. I just read some really offensive advice by Ronald Raether about what to say after a data breach. Well, I should be clear that I didn’t read all of his advice because I stopped reading after his first answer to the interviewer: RONALD RAETHER: The first place to start is with defining the goals….
Category: Commentaries and Analyses
High school hack: Teenager suspended for accessing confidential school records and posting them on Facebook
David Collins of The Mirror reports: A teenager hacked into his school’s “secure” database and posted pupils’ disciplinary records on Facebook. Lewis Blessed, 15, was suspended from classes for nine days after revealing confidential staff comments about children who had misbehaved. But his mum Andrea, 43, says the school over-reacted – because her son simply…
Morning musing
If posting has been light, there are reasons. For one thing, I’ve been entering most new incidents directly into DataLossDB.org. If you’re not already checking DLDB and you want to really keep up with breach reports, bookmark that resource. But I’m also in data heaven right now, having received 3+ years’ of data breach reports…
UK: Axway provides statistics on complaints to the ICO
Axway issued a press release with some interesting statistics on complaints made to the Information Commissioner Office (ICO). They obtained the data under Freedom of Information requests. Here are some of the statistics they compiled: Since April 2010, 35% of complaints to the ICO involved disclosure of personal data and security breaches. This year alone, the…
Report: Some cloud providers have ‘dirty disks’
Brandon Butler reports: A forensic IT study by a U.K. security consultancy found that some multi-tenant public cloud providers have “dirty disks” that are not fully wiped clean after each use by a customer, leaving potentially sensitive data exposed to other users. Last year, officials at Context Information Security conducted a study to determine if…
Watchdog defends apparent discrepancies in fines for private and public sector data breaches
The UK’s data protection watchdog has defended its policy of issuing fines after newly released figures suggested private sector organisations are issued with disproportionately fewer fines than local Government ones. Read more on Out-Law.com.