Technology is Helping Victims and Fraudsters
By Michael Eggebrecht, Community Editor at CIOZone
Last year, 11.1 million U.S. adults were the victim of identity fraud — 4.8 percent of the population. That’s good for a 12 percent increase from 9.9 million the prior year, according to Javelin Strategy & Research, which released its annual identity fraud survey Feb. 9. Along with that increase, the total annual fraud amount in 2009 increased 12.5 percent, from $48 billion to $54 billion. At the same time, the average fraud resolution time fell from 30 hours in 2008 to 21 hours last year…
Insurance Industry Fights Liability Claims
By John Watkins, Attorney with Chorey, Taylor & Feil
In your policy it states quite clearly that no claim that you make will be paid. You unfortunately plucked for our Never-Pay Policy, which if you never claim is very worthwhile - but, uh, you had to claim - and there it is… Monty Python’s Flying Circus, circa 1971
Consider Outsourcing Your Network Security
By Kenneth Leeser, President, Kaliber Data Security and Compliance
The number and types of external threats to a network are growing exponentially, and unless a company has a dedicated and highly specialized team devoted to network security, it’s hard to keep up with the rapidly changing threat landscape. After all, the threats of the Internet are the same for every company regardless of its size.
GAPP: Generally Accepted Privacy Principles
By Kenneth Leeser, President, Kaliber Data Security and Compliance
The privacy principles and criteria are founded on key concepts from significant local, national, and international privacy laws, regulations, guidelines, and good business practices. By using GAPP, organizations can proactively address the significant challenges that they face in establishing and managing their privacy programs and risks from a business perspective. The following are the 10 generally accepted privacy principles…
Data Security Regulations Require Action
By Kenneth Leeser, President, Kaliber Data Security and Compliance
This is a strong acknowledgment that proper data security programs not only involve hardening the perimeter with firewalls, disk encryption, and Intrusion Prevention Systems, they must also include the implementation of appropriate employee policy and procedures, training and enforcement…
Trade Secrets and Confidential Information
By John Watkins, Attorney with Chorey, Taylor & Feil
According to recent reports, a Chinese company just agreed to a $200 million settlement of a trade secret case in California. Associated Press has reported that a former Home Depot manager has been criminally accused of passing trade secret information. These issues are extremely serious and should be considered carefully by any company large or small.
Effective Security Policy Messaging Important
By Christopher Burgess, Senior Security Adviser
Clearly communicate that, in fact, there are secrets. Once employees understand that they have a responsibility to protect the enterprise, the chasm between the security professional and the rest of the staff not only shrinks, it disappears. Far too often, security policies arrive as a reaction, as opposed to a proactive management of risk. Through this process, the enterprise will acknowledge security as forethought, not an afterthought.
Increase Your Information Security IQ
By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com
People who generally have to much time on their hands read my posts. Or they simply enjoy my train wreck world view. Anyway there are some fantastic resources that I draw from that help me to break down the complicated issues revolving around how to keep the bad guy from draining your bank account. The following make me look good (not to insult them):
What Could Possibly Be Worse Than A Virus?
By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com
Once a predator uses your Internet connection to go to into the bowels of the web, your Internet Protocol address, which is connected to your ISP billing address, is now considered one that is owned by a criminal. If law enforcement happens to be chatting with that person, who’s using your Internet connection to trade lurid porn, then someone may eventually knock on your door at 3 AM with a battering ram. And in freakish and relatively new twist, hackers can use a virus to crack your network and gain remote control access, and then store illicit porn on your hard drive.
Congressional Leak Spotlights P2P User Act
By Robert Siciliano, ID Theft Expert and Security Consultant to Intelius.com
Congress is still considering the Informed P2P User Act, a law that would supposedly make it safer to use peer-to-peer file sharing software, an effort that is similar to banning mosquitoes from sucking blood. It just isn’t happening…
