Jason Bouwmeester reports: The Payment Card Industry Security Standards Council has released a bulletin regarding the use of SSL for data protection on the Internet. In the bulletin, the Council states that SSL – a protocol for providing secure communications – is no longer acceptable for secure transactions. This has left many people wondering what…
The Black Market For Stolen Health Care Data
Aarti Shahani sat down with Greg Virgin, CEO of the security firm RedJack, to discuss the black market for stolen health care data: After poking around for about an hour, we come across an advertisement by someone selling Medicare IDs. We’re not revealing the site address or name because we don’t want the dealer to know we’re…
The Target and Other Financial Data Breaches: Frequently Asked Questions
Sabrina I. Pacifici writes: The Target and Other Financial Data Breaches: Frequently Asked Questions “In November and December of 2013, cybercriminals breached the data security of Target, one of the largest U.S. retail chains, stealing the personal and financial information of millions of customers. On December 19, 2013, Target confirmed that some 40 million credit…
Jeb Bush’s privacy-shattering email cache hid another surprise: Viruses
Martyn Williams reports: In addition to personal phone numbers and email addresses for hundreds of people who corresponded with him, there’s something else inside the cache of emails that Jeb Bush released this week: computer viruses. Earlier this week, Bush, who some tip as a presidential hopeful, released thousands of emails from his time as…
They’re victims of identity theft, but who’s to blame?
One of the frustrations identity theft victims experience is that they often have no idea how their identity information was compromised. Some of this site’s readers may have figured it out for themselves in looking into breach notification letters they got from CICS, but for all too many people, there are no answers. Consider some folks…
Accused Moscow Hacker Drinkman Arrives in U.S. for Trial
David Voreacos reports on the latest development in a case that has been going on for several years: Vladimir Drinkman, a Muscovite charged in the biggest data-breach prosecution in U.S. history, was brought to New Jersey to face trial after spending more than two years behind bars in Amsterdam, said a Justice Department official. Drinkman…