Can your company afford to lose up to $1.5 million a year? That’s what a company can potentially be fined by the government for violating HIPAA Business Associates security requirements. That’s a big dent in your wallet. So, how do you know if you could be affected, and if so, what can you do about [...]
A hacker compromises a major corporation and hides in the shadows for months, silently reading e-mails and monitoring traffic. The hackers notify the company and make demands. The FBI infiltrates the hacker group until the mole is exposed and expunged. This sounds like a movie, but this is real life. The latest release by the [...]
With St. Patrick’s Day just around the corner, here’s a little something to ponder with your green beer: Have you ever considered that some computer hackers might just be leprechauns? What—leprechauns as computer hackers? Sure, it sounds a little crazy, but think about it for a moment. Hackers and leprechauns have quite a few common [...]
A recent report from Mandiant Corporation in Alexandria, Virginia describes what they believe to be an ongoing cyber espionage campaign originating from the Chinese government’s People’s Liberation Army, Unit 61398. Based upon their data breach investigations, this unit dubbed APT1, for Advanced Persistent Threat 1, has spanned more than 5 years, utilizes servers in at least a dozen countries [...]
This week, Mandiant, a Virginia-based cybersecurity firm released an extensive report accusing a Chinese military unit of hundreds of attacks on American businesses in search of intellectual property. Some of the targets included The Associated Press, The Wall Street Journal, The New York Times, Twitter, Facebook, and most recently, Apple. Each of these companies were [...]
You get home, open your computer bag, reach in to get your laptop and…nothing. You’ve lost your laptop; the panic sets in. Your laptop is your life in a box. It has your contacts, your email, your financial information, sensitive company documents, everything. As hard as it is at a time like this, the best thing to do it to try [...]
A national pizza chain recently reported a data breach on its online credit/bank card system that allowed hackers to steal and duplicate 200 to 250 pizza-goer identities that have been found to be used in 26 states, as well as Africa and Asia. The police suspect an outside predator planted malicious software on the store [...]
Take a moment and think about it. All it takes is just one. One hard drive slipping through the cracks and ending up in the wrong hands or, in this most recent case of illegal dumping, CRT waste traceable back to your company. I’ve been in the risk management business for over 20 years and [...]
In its recently released “Internet Security Threat Report,” Symantec, the largest producer of security software for computers, best known for its Norton brand, found that malicious attacks have increased by 81% over 2010. The report also stated that web attacks have increased by 36% and more than half of those attacks are targeted at Small [...]
Rafal Los has an excellent blog post up about how to plan for failure in your information security program. Rafal makes the excellent point that not planning for the (inevitable) failure of your organization’s security controls is, in fact, failure itself. As I mentioned above, the primary failure in a situation where an organization is [...]
Reclamere RSS Feed