Commentaries and Analyses – Page 855

Verizon Business Issues 2009 Supplemental Data Breach Report Profiling 15 Most Common Attacks

Posted on December 9, 2009 by Dissent

Verizon’s press release: The latest in the Data Breach Investigations Report series by Verizon Business security experts provides enterprises with an unprecedented look at the 15 most common security attacks and how they typically unfold. In the “2009 Supplemental Data Breach Investigations Report: An Anatomy of a Data Breach,” Verizon Business security experts tap the…

The Merchants Strike Back?

Posted on December 7, 2009 by Dissent

David Navetta has a thought-provoking article over on InformationLawGroup that begins: With the recent news of several restaurants teaming up to sue point-of-sale system provider Radiant Systems (a copy of the complaint can be found here) for failing to comply with the PCI Standard, it appears that some merchants may be in a mood to…

NZ Privacy Commissioner annual report finds security gaps

Posted on December 6, 2009 by Dissent

The New Zealand Privacy Commissioner, Marie Schoff, has presented the annual privacy commissioner’s report for the period ending June 2009. The report (pdf) indicates that privacy concerns are on the increase, particularly with respect to businesses and the Internet. From the report, the section on portable storage devices [PSDs] in the government sector: Our survey…

Malware rebounds as cause of data loss

Posted on December 4, 2009 by Dissent

The 2009 CSI Computer Crime and Security survey identified a number of shifts in significant cybersecurity threats this year. Malware infections jumped to 64% from 50%, reversing a dip in the number of companies experiencing malware infections that started in 2005. That year, the figure was 74%. Other significant changes were an almost doubling in…

Ca: Public has a right to know

Posted on December 3, 2009 by Dissent

The Times Colonist has an editorial about a breach reported previously on this blog. The editors point out that it was their reports who uncovered what should have been revealed by the government and that there are many as yet unanswered questions. Kudos to the reporters, Lindsay Kines and Rob Shaw, and the Times Colonist…

If DOD can do this, why can’t they manage to remove SSNs?

Posted on December 3, 2009 by Dissent

Charlie Reed reports: The Defense Department will not meet its end-of-the-year deadline for removing Social Security numbers from military ID cards as they are issued or renewed, the Pentagon has confirmed. It is not clear how much progress, if any, has been made toward meeting that goal or any aspect of a sweeping identity theft…