World’s Biggest Data Breaches – A timeline of the biggest data breaches in the world.
Half of businesses will not deal with companies who have suffered data breaches – More than half of mid-sized businesses across Europe would refuse to do business with an organisation which has suffered a data breach, despite the fact many see data loss as just another part of everyday business.
Privacy Commissioner backs mandatory data breach notification – The Australian Privacy Commissioner, Timothy Pilgrim, has said he supports the introduction of mandatory data breach notification laws in Australia – outlined by Attorney-General Mark Dreyfus – and has done so since they were first proposed in 2008 by the Australian Law Reform.
In his view, mandatory notifications will result in a better public understanding of the scope and frequency of breaches and as a result, promote privacy awareness.
US report warns on China IP theft – The theft of intellectual property from the US is “unprecedented” and costing the nation an estimated $300bn (£200bn) each year, a report says.The study, led by former top-ranking officials, said China was thought to be behind 50-80% of the theft.
Attacks ‘highlight need for data breach notification law’ – The Australian Bankers Association has defended the strength of IT security processes in place across Australia’s banking system following the revelation that Reserve Bank of Australia systems had been compromised by China-based hackers.However, security experts said the incident highlighted the need for Australian data breach notification laws to be tightened to force organisations to come forward when they were hacked.
Mandatory data breach notification urged after privacy law passage – The Australian privacy commissioner and a consumer group supported mandatory data breach notifications, in comments submitted today to the Attorney General. Last week, Parliament passed a bill containing several amendments to privacy law. Among other things, the law gives Privacy Commissioner Timothy Pilgrim more powers, including the right to seek civil penalties for serious privacy breaches.
Australian Pizza Hut customers served a deep dish of info leaks – On Tuesday night, hackers defaced the Australian website of Pizza Hut and made off with customers’ personal data, including names, email addresses and other contact information.
Roxon proposes compulsory reporting of online privacy breaches – Attorney-General Nicola Roxon this morning released a discussion paper to seek comment on whether organisations should be required to report breaches, what kind of breaches should have to be reported, who should be notified, and what penalties should apply for failure to comply.
Data breach liability should lie with companies: Survey – The call for mandatory data breach notifications and potential legal proceedings against enterprises who fail to protect customer data has become a little louder in Australia, according to the findings of a new survey.
Cyber Security: 75% of data breaches are inside jobs – High profile data breaches are often the work of hacker collectives like Anonymous, but it turns out that many more come at the hands of a company’s own employees.
Breach disclosure ‘inevitable’ for Singapore data protection law – Public disclosure and notification of companies’ security breaches will “inevitably” be part of discussions in future amendments to Singapore’s upcoming Data Protection Act, as the country looks to keep in line with more mature jurisdictions.
UK data breaches up 1000% in five years – Imation today released figures obtained through a request under the Freedom of Information Act, which show that data breach numbers in the UK have increased by more than 1000% in the past five years.
Credit Card Security And PCI: Where Do We Go From Here? – When security breaches make the news, the typical victims are retailing giants, such as Marshalls, or major organizations, like Nasdaq. Seeing hackers go after big targets can be consoling to small retailers with limited IT resources, but that’s a false sense of security, according to Gray Taylor, executive director of the NACS-affiliated Petroleum and Convenience Alliance for Technical Standards (PCATS).
The Difference between Tokenization and Encryption – We are seeing more and more organizations moving from Encryption to Tokenization, as it is more secure and cost-effective approach. The reason is because it is the best way to minimize the data security risk while reducing your PCI compliance burden.
‘Cyber risk has never been greater’ – Insurance carriers and brokers are seeing increased demand in policies specifically tailored to cover an employer in the event of a data breach, a risk that is increasingly common as more and more business moves online for small and large employers alike.
How to manage and disclose data breaches – The 2012 Verizon Data Breach Investigations Report released last week demonstrates that data security breaches are happening much more frequently and across a wide range of industries, including financial services, retail, hospitality and manufacturing.
Changes to PCI rules: What you need to know – The Payment Card Industry (PCI) rules related to the security of customer card information play a big role in network design, and with some updated modifications to the PCI Data Security Standards (DSS) 2.0 guidelines kicking in at the end of the month, here’s what you need to know.
The Four-Step Process to PCI DSS Compliance – if you work in a small or medium-sized business, you might have opened your mail recently and found a letter from the bank that handles your credit card processing, asking you to certify your compliance with the Payment Card Industry Data Security Standard (PCI DSS) or face substantial fines and surcharges. What does this letter mean, and how does a small business comply with PCI DSS?
Fraudster set up ‘credit card factory’ – a 28-year-old has plead guilty to 66 charges in one of Canada’s largest card fraud incidents and sentenced to six years in prison. The scam was uncovered after police arrested him following a failed attempt to use a fake card at a department store to purchase a DSLR camera.
Most small firms don’t think a data breach could happen to them – A concerning 85% of small business owners believe a data breach is unlikely, and many are not implementing basic security measures to protect their customer or employee data, according to a survey sponsored by the Hartford insurance company.