Archive

Archive for the ‘PII’ Category

Data Protection Projects – Where to start?

April 28, 2010 Leave a comment

One common question I get asked when I speak on Data Protection, is “what do I do first” – it’s interesting topic because although my presentation is exactly about what most people should do, and in what order, everyone and every organization is different and one size, absolutely does not fit all.

In my presentation I talk about “5 Steps to Data Protection Nirvana”: Read more…

Advertisements

Copiers give up secrets…

April 28, 2010 Leave a comment

This interesting report by CBSNews highlights the problem of not paying attention to how data leaks occur. CBS News worked with a small company who specialize in Digital Copier Security to show how easy it was to obtain sensitive data.

By simply going to a used copier supplier and buying 4 random machines at a cost of around $300 each (without knowing who their previous owners were), they were, within an hour able to retrieve thousands of page prints of sensitive data including: Read more…

Countrywide Financials Data Loss leads to $20m class action suite…

April 14, 2010 17 comments

Following on from the Countrywide Financial data breach back in 2008, they now find themselves saddled with a class action lawsuit for $20,000,000.

Countrywide Financials problems all started when employee Rene Rebollo confessed to downloading 20,000 data files per week and selling them to Wahid Siddiqi for as much as $70,000 (a total of 2.2 million people’s information was compromised), this leading to Bank Of America (their new owners) paying $350,000 to Connecticut to settle claims.

The terms of the class action can be found on http:\\www.cwdataclaims.com, but they include up to $50,000 reimbursement per incident of identity theft from a fund of $5,000,000, free credit monitoring, $90 for opening a new account, $20 per month, up to $200 for credit monitoring, $10 per hour for telephone calls etc, and many other miscellaneous things.

Threat of hacker-obtained tax information yields $137m revenue

March 19, 2010 Leave a comment

This week, the German Tax Authorities opened cases on 1,100 suspected tax evaders thanks to information purchased  from a “hacker”. As reported on BusinessWeek and other sites, the hacker offered a CD of information of German nationals with “secret” Swiss bank accounts managed by Credit Suisse to the German authorities, who quickly snapped it up, apparently for the price of 2.5 million euros.

Reports indicate that around 400 million euros of unpaid taxes could be reclaimed. Read more…

Categories: eBanking, PII Tags: ,

CSO Executive Seminar Series on Data Protection and Encryption…

March 10, 2010 Leave a comment

Just a reminder that tomorrow I will be speaking at the CSO Executive Seminar at the Hilton, Tysons Corner VA – http://public.cxo.com/conferences/index.html?conferenceID=64. The topic will be “5 practical steps for data protection”. I don’t expect it to be a McAfee sales push, I’ll be talking about technologies in general.

If you’re a reader of my blog(s) please come and say hello.

Speaking at the “Security: The New Business Imperative” Event

February 16, 2010 Leave a comment

For those in the area, I will be speaking next week (on the 23rd Feb) at the Security: The New Business Imperative event at the Westin Diplomat Golf Resort & Spar, Hallandale Beach FL.

The topic will be a review of current regulations, and practical steps you can take not to fall foul of them.

You can reserve a seat by contacting Tricia_Brown@mcafee.com, or (678) 653 9606

Shell Oil’s 170,000 Personnel list leaked to Activists..

February 16, 2010 Leave a comment

Last week (13th Feb) Shell Oil announced that the personal details of all 170,000 employees and contractors had been leaked to a number of non-Government organizations via email, these included Greenpeace’s American office, Earthrights, Justice in Nigeria Now, Shell Guilty, Friends of the Earth (Netherlands). Also included was the anti-Shell website Royaldutchshellplc.com. The story was well covered in the UK national press.

The list included a limited number of personal addresses. Read more…