Breaches & Exposures Features

Failing to protect corporate data opens the corporate purse with no guarantee that it will ever be closed again. Is ignorance bliss? Not when it comes to data loss. People just don’t think that putting family genealogy, exposes them and their families to spying by ID fraudsters and for that matter anyone else (stalkers, paedophiles, employers, parents). We can no longer pretend that information security is working in its current form. So let's change it. June 30 marks an important date for any company that takes online credit card payments. Neville Isdell said that the breach “…underscores the responsibility we each have to be vigilant in protecting our trade secrets. Information is the lifeblood of the company.” Despite a sluggish US economy, online shopping continues to show impressive revenue gains. Recent Forrester Research data suggests that online shopping will grow 17 percent in 2008, a far cry from what is happening in the brick-and-mortar world. World Intellectual Property Day (April 26 of each year) came and went; pundits and politicians all made their statements, countries and their counsels all presented their positions, international organizations implored their members to protect intellectual property and the creativity and innovation represented. For information security directors at large corporations, the growing reliance on contractors is a major concern. Local and offshore programmers provide businesses a competitive edge, but they also increase security risks. There's a lot of talk about convergence between physical and information security, shame it hasn't happened. The laws on illegal downloading are due for a much-needed update, so make sure your voice is heard. Social networking sites are a security minefield, so we have created some exercises to test for vulnerabilities. When individuals lack an understanding of the specifics of a technology, it is very easy to make inaccurate conclusions on how any two technologies are related -- if they are related at all The serial company founder and SC's CEO of the Year tells Paul Fisher why he knew all along that data-centric security was the future. The questions of "who" and "why" in identity theft remain largely ignored. That is, "Who is after online identities? And what for?" Employers must face the fact that a lot of online shopping takes place at the office, and it can put an entire business network at risk. As the Payment Card Industry's data security regulation begins to bite, Barry Mansfield examines its aims and obligations. So many application-level zero-day exploits exist today that the question is not whether your computers are safe but what's already running on them. As long as there has been credit granting there have been customers committing first party fraud. We need an identity framework that combines strong authentication with anonymity.