Commentaries and Analyses – Page 851

Article: Once More Unto the Breach: An Analysis of Legal, Technological and Policy Issues Involving Data Breach Notification Statutes

Posted on September 5, 2010 by Dissent

Dana Lesemann of the Howard University School of Law has an article of note in the Akron Intellectual Property Journal, Vol. 4, p. 203, 2010. Here’s the abstract: Companies facing the loss of a laptop or a compromised server have long waged battles on several fronts: investigating the source of the breach, identifying potentially criminal…

College Data Breaches Underscore Higher Ed Security Challenges

Posted on September 3, 2010 by Dissent

Brian Prince reports: Reports surfaced this week that the University of Virginia fell victim to a cyber-attack that stole nearly $1 million. Unfortunately for administrators at colleges and universities, their institutions are just as vulnerable to data breach woes as enterprises. According to reports, attackers used malware to steal online banking credentials for accounts belonging…

Email remains a major vector of enterprise data loss

Posted on September 2, 2010 by Dissent

Paul Mah reports: A new survey of some 261 U.S. enterprises with more than 1,000 employees has found that email remains the number one source of data loss risks. Indeed, 35 percent of companies say they investigated the exposure of confidential information via this medium in the last 12 months. Another 20 percent say they…

UK Information Commissioner (ICO) Enforcements and Website Hacks

Posted on August 31, 2010 by Dissent

“alexisfitzg” blogs: I did a brief analysis of the enforcement notices that have been handed out by the UK Information Commissioner (ICO) to organisations found to be in breach of the Data Protection Act. The idea was to see how many incidents were a result of a website hack (SQL Injection, XSS etc.) About 100…

Network security challenges faced by universities

Posted on August 28, 2010 by Dissent

H. Peter Felgentreff, President & CEO of NCP Engineering, discusses challenges faced by universities in balancing a secure and open network and makes some suggestions in this article on Help Net Security.

NC Office of the State Auditor: ESC employees violating copyright law on state computers

Posted on August 27, 2010 by Dissent

An audit by the North Carolina Office of the State Auditor indicates that what at least one employee in the Employment Security Commission (ESC) was doing on state computers and state time was, well, illegal. The report (pdf), released yesterday, reveals: Our examination of computers and disk drives assigned to a Systems and Operations Analyst (Systems…