Over on the EMR and HIPAA blog, John says he’s torn about the case where a young man has been charged for his somewhat poorly thought out approach to a job interview with Houston Healthcare: … Honestly, Robert Rhodes, chief information officer for Houston Healthcare, just sounds like an angry CIO whose security efforts were torn…
Category: Commentaries and Analyses
GAO – Information Security: National Archives and Records Administration Needs to Implement Key Program Elements and Controls
Information Security: National Archives and Records Administration Needs to Implement Key Program Elements and Controls GAO-11-20 October 21, 2010 Summary: The National Archives and Records Administration (NARA) is responsible for preserving access to government documents and other records of historical significance and overseeing records management throughout the federal government. NARA relies on the use of…
Audit: Province and U of Calgary must do better job
Jamie Komarnicki reports: The provincial government and the University of Calgary must do a better job of protecting against unauthorized access to confidential online information, warns Alberta’s auditor general. Service Alberta and the U of C each came under fire in Merwan Saher’s latest report, released Tuesday, for not demonstrating they’ve implemented adequate security policies,…
Did Dutch Police Break the Law Taking Down a Botnet?
Interesting article by Jeremy Kirk about how Dutch police may have broken the law in an attempt to get control of a botnet and to warn innocent users that their systems were infected: Dutch police took unprecedented action in taking down a botnet on Monday: They uploaded their own program to infected computers around the…
Will The ICO Make An Example Of Google? (I hope not)
Almost one month ago, the UK’s ICO announced that fines for data breaches were “imminent.” Maybe “imminent” means something different in UK English than in New Yorkese, where we tend to be impatient, but nothing happened. Now Peter Judge of eWeek suggests that, for a variety of reasons, Google might make a good first target….
UK: Moving on from the 2007 data loss by HMRC
The loss in 2007 by Her Majesty’s Revenue and Customs of 25 million people’s details was a major warning to the public sector. Rob Buckley says that the private sector should also take heed. SC Magazine has a lengthy article reviewing the HMRC breach and its aftermath, with lessons learned and lessons to-be-learned by the private…