Commentaries and Analyses – Page 850

Apres le breach, yet another call for greater cooperation to fight data theft

Posted on December 19, 2009 by Dissent

And the year draws to a close as it opened: with a call for greater cooperation in preventing security breaches. At the beginning of the year, it was Heartland Payment Systems. Now, following lawsuits against it by restauranteurs in Louisiana who were hacked while using one of its POS applications, Radiant Systems is trying to…

So where are the breach reports on HHS?

Posted on December 18, 2009 by Dissent

The following is cross-posted from PHIprivacy.net: Under the provisions of the HITECH Act that went into effect several months ago, covered entities are required to report breaches involving the unsecured protected health information of 500 or more individuals to the Secretary of the U.S. Department of Health & Human Services. Unfortunately, HHS watered down the…

Some yearly round-ups on breaches

Posted on December 17, 2009 by Dissent

It’s that time of the year, and some firms and journalists have begun looking back at 2009. Here are some round-ups I’ve seen recently: Perimeter E-Security Exposes Top Ten Biggest Security Breaches and Blunders of 2009 The Year Of The Mega Data Breach 2009: a year of incident, loss, malware and ultimately education Ten Most…

No law, no investigation. So change the law!

Posted on December 17, 2009 by Dissent

On August 28, Missouri’s new data protection law went into effect. Fat lot of good it did for past clients of Nationwide Credit Counseling. When their financial records, replete with personal information, were found in bankers boxes in a dumpster , were they notified of the breach? No. And was any action taken against the…

Plugging The Government’s Biggest Data Leak

Posted on December 16, 2009 by Dissent

Andy Greenberg reports: When David Ferriero was named head of the federal government’s National Archive and Records Agency last month, he didn’t just become America’s most important librarian. He also took on one of the toughest tasks in government IT today: plugging the source of a continual stream of information leaks, including what may have…

Computer security for Minnesota jobless benefits data is called weak

Posted on December 12, 2009 by Dissent

Julie Forster reports: The state agency that administers unemployment benefits is addressing concerns that it lacked adequate security controls for its computer system, leaving private information about applicants vulnerable to data breaches, according to a legislative audit report. The Dec. 3 report details the lack of controls with the massive Department of Employment and Economic…