7.3 Million New Yorkers Exposed in Data Breaches in 2013

The attorney general of New York recently released a data breach report revealing that over 900 breaches resulted in the exposure of 7.3 million new yorkers sensitive information during 2013.  The breaches at Target and LivingSocial make up the largest chunk of that breached data but with 900 breaches during the whole year, businesses of […]

Read full story Comments { 0 }

Florida Updates Its Data Breach Law – Florida Information Protection Act of 2014

As of July 1st, Florida’s data breach law will have some teeth!  The Florida Information Protection Act of 2014 was just recently signed by Governor Rick Scott and goes into effect July 1st.  Florida’s new law makes it one of the most strict out there, don’t worry California you still hold the crown, and broadens […]

Read full story Comments { 0 }

The Evolving Role of the CISO

The world is changing. The threats are changing. The technology is changing. It makes sense that our roles, our titles and our responsibilities are changing as well and information security officers are no different. “Twenty years ago, when businesses began hiring CISOs, business advantage derived from working with data within the organization. Data lived primarily […]

Read full story Comments { 0 }

Data Breach Fallout

The CEO of Target has stepped down in the aftermath of the huge data breach that hit the retailer last year.  Although not a huge surprise considering how big the breach was, to see such a high profile resignation is a reminder that these incidents have significant business consequences “Target on Monday announced that Steinhafel, […]

Read full story Comments { 0 }

Pencils Down, Hear Come the HIPAA Audits

As HHS begins its’ HIPAA audits this fall, experts have stressed the importance of good documentation.  These “desk audits” are the second generation of HIPAA audits and are expected to be narrower in focus.  The last round of HIPAA audits performed by KPMG set the stage for this years audits. “Common problems from the pilot […]

Read full story Comments { 0 }

Experian Data Breach Gets the Media Treatment

A huge data breach involving Experian which came to light months ago has finally caught the media’s eye. Experian enmeshed in litigation over business that was breached: “Experian Plc is enmeshed in litigation over its 2012 purchase of the assets of data firm Court Ventures, which is at the center of a breach that exposed […]

Read full story Comments { 0 }

Ponemon Report on Patient Privacy and Data Security

The Ponemon Institute just released their 4th Annual Report on Patient Privacy and Data Security sponsored by ID Experts.  The report has some surprising and interesting findings as to the state of healthcare privacy and security: Employee negligence: 75 percent reported employee negligence as their biggest worry, and insider negligence was the root of most […]

Read full story Comments { 0 }

Maricopa Community College Data Breach Update: Lawsuits

The huge Maricopa Community College Data Breach just got a bit messier… here come the lawsuits.  A little background on the breach can be found here. DataBreaches.net reports: Arizona law firm files notice of claim over Maricopa County Community College District breach; class-action lawsuit to follow? The notice of claim for the first client was […]

Read full story Comments { 0 }

Breach Risk Assessment Decision Process – Software Vs. Paper

WEDI released its most recent Data Breach Notification Decision Process document, an update with Final HIPAA Omnibus Rule Breach Notification changes, but something strange stands out.  Why is an organization which is focused on “electronic data interchange” recommending a paper process?  Do you complete your taxes on paper?  Does your accountant prepare anything on paper?  […]

Read full story Comments { 0 }

Is Data Breach Prevention Dead?

It sounds silly, and might be a bit over dramatic, but is data breach prevention dead?  That’s the question being raised by several information security professionals and although the statement seems absurd, the logic isn’t. “In the past few years, we have experienced a lot more sophisticated, targeted attack activity that is a lot more […]

Read full story Comments { 0 }