David Navetta has a thought-provoking article over on InformationLawGroup that begins: With the recent news of several restaurants teaming up to sue point-of-sale system provider Radiant Systems (a copy of the complaint can be found here) for failing to comply with the PCI Standard, it appears that some merchants may be in a mood to…
Category: Commentaries and Analyses
NZ Privacy Commissioner annual report finds security gaps
The New Zealand Privacy Commissioner, Marie Schoff, has presented the annual privacy commissioner’s report for the period ending June 2009. The report (pdf) indicates that privacy concerns are on the increase, particularly with respect to businesses and the Internet. From the report, the section on portable storage devices [PSDs] in the government sector: Our survey…
Malware rebounds as cause of data loss
The 2009 CSI Computer Crime and Security survey identified a number of shifts in significant cybersecurity threats this year. Malware infections jumped to 64% from 50%, reversing a dip in the number of companies experiencing malware infections that started in 2005. That year, the figure was 74%. Other significant changes were an almost doubling in…
Ca: Public has a right to know
The Times Colonist has an editorial about a breach reported previously on this blog. The editors point out that it was their reports who uncovered what should have been revealed by the government and that there are many as yet unanswered questions. Kudos to the reporters, Lindsay Kines and Rob Shaw, and the Times Colonist…
If DOD can do this, why can’t they manage to remove SSNs?
Charlie Reed reports: The Defense Department will not meet its end-of-the-year deadline for removing Social Security numbers from military ID cards as they are issued or renewed, the Pentagon has confirmed. It is not clear how much progress, if any, has been made toward meeting that goal or any aspect of a sweeping identity theft…
Top Experts Examine Causes Of Breaches In Spy Museum Forensics Panel
Tim Wilson writes: Here at the U.S. Spy Museum, breaches are taken seriously. And in a panel held here last night, four top security experts had some serious advice for enterprises and security professionals. […] If companies are going to defend themselves against the onslaught of attacks, panelists said, they need to change the way…