Evan Schuman writes: With TJX having suffered well more than $47 million in out-of-pocket expenses from its infamous data breach (announced in 2006 but beginning as early as 2003), the $20 billion retailer is preparing to write still more checks. It has now set aside another $23.5 million for additional anticipated breach costs, according to…
Category: Commentaries and Analyses
Cyberattack on Google Said to Hit Password System
John Markoff reports: Ever since Google disclosed in January that Internet intruders had stolen information from its computers, the exact nature and extent of the theft has been a closely guarded company secret. But a person with direct knowledge of the investigation now says that the losses included one of Google’s crown jewels, a password…
Why I Spoke Publicly About Cyber Incident
Bob Maley writes: If you have been following the blogosphere recently, you may have read that I used to be the chief information security officer for the Commonwealth of Pennsylvania, having been dismissed for speaking about security without specific permission. We won’t go into that here, but the incident begs the question if sharing about…
Hancock Breach Reveals New Trend
Linda McGlasson writes: The Hancock Fabrics data breach continues to raise new questions about the security of point of sale (POS) devices at retail stores. In March, the national fabric store chain publicly confirmed the breach it suffered last summer, sending an open letter to its customers, revealing: “PIN pad units at a limited number…
As cloud computing grows, customer frustration mounts
Patrick Thibodeau reports: Users who turned to cloud computing for some of its obvious benefits, such as the ability to rapidly expand and provision systems, are starting to shift their focus to finding ways to fix some early weaknesses. Cloud computing today has some of the characteristics of a Wild West boom town, but its…
First Annual French Ponemon Study Shows the High Cost of Data Breaches for French Organizations
Privacy and information management research firm Ponemon Institute, together with PGP Corporation, a global leader in enterprise data protection, today announced the results of the first annual study into the costs incurred by French organisations after experiencing a data breach. The “2009 Annual Study: French Cost of a Data Breach” report, compiled by the Ponemon…