Disciplining IT and IT security managers following a breach of their systems rarely happens, and perhaps there's a good reason they shouldn't be punished.
The Obama Administration's cybersecurity proposal for breach notification will require collaboration among differing financial-services providers, within and across borders, says Leigh Williams of BITS.
In one of the largest health information breaches reported so far this year, Spartanburg Regional Healthcare System in South Carolina has notified 400,000 of an incident involving the theft of a desktop computer from an employee's car.
As international ACH transactions increase, banking institutions can't just think about passing a security compliance audit. Effective and efficient monitoring will be keys to mitigating fraud risks.
Booz Allen didn't specifically address what was breached, but the hacking group Anonymous says it pilfered a list of some 90,000 military e-mails address from the company's computers..
The Department of Veterans Affairs soon will enable clinicians to use more mobile devices to view patient information, taking several steps to help ensure security.
"We infiltrated a server on their network that basically had no security measures in place," according to the posting of the hacking group. "We were able to run our own application, which turned out to be a shell and began plundering some booty."
As recent incidents at Citi and BofA reinforce, most banking institutions, from large to small, have done a poor job of keeping up with inside jobs and internal threats.
Minnesota has seen an increase in malicious traffic since the state government shut down a week ago, but state CISO Chris Buse says sophisticated intrusion-detection systems and an alert skeleton staff have prevented any harm from being done, at least to the part of state government IT controlled by the Office of...
We all know the cost of regulatory compliance - how expensive it can be to meet the standards of HIPAA, HITECH and other industry guidelines. But two organizations this week learned hard lessons about the cost of non-compliance.
A Twitter posting by Pacific Northwest National Laboratory, which conducts IT security research and development, says: "A sophisticated cyberattack has shut down Internet and e-mail at PNNL. Full access will be restored once we can repel further attacks."
The U.S. Department of Health and Human Services' Office for Civil Rights entered into a resolution agreement with the University of California at Los Angeles Health System to settle violations of the HIPAA Privacy and Security Rules.
Our website uses cookies. Cookies enable us to provide the best experience possible and help us understand how visitors use our website. By browsing inforisktoday.com, you agree to our use of cookies.
