http://www.zdnet.com/most-ceos-clueless-about-cyberattacks-and-their-response-to-incidents-proves-it-7000025396/#%21
Perhaps that’s cynical and pessimistic and a headline grabber, but then that’s what makes news.
What I’m afraid of is that things like this set a low threshold of expectation, that people will thing they don’t need to be better than the herd.
Headline: FTC attorney’s laptops stolen
http://www.presstelegram.com/business/ci_3969575
The government agency charged with fighting identity theft said Thursday it had lost two government laptops containing sensitive personal data, the latest in a series of breaches encompassing millions of people.
Can you spell “Irony”?
This goes a bit beyond the bare-faced incompetence that we’ve grown used to
and come to treat as the new security baseline at the government.
And here’s another chunk of Irony:
Many of the people whose data were compromised were being investigated for possible fraud and
identity theft, said Joel Winston, associate director of the FTC’s Division of Privacy and Identity Theft Protection.
But what caught my attention in this article was the following:
On Thursday, a House panel was cautioned that credit monitoring alone may not be enough to protect Americans whose names, birth dates and Social Security numbers were compromised at the hands of the government.
During the House hearing Thursday, Mike Cook, a co-founder of a company specializing in data breaches, said identity-theft victims typically don’t become aware they’ve been hurt until six months after their data was stolen, when creditors come calling for money owed.
At that point, it’s likely the thieves will have moved on having made just a few purchases so they don’t attract notice and started using another victim’s information.
As a result, a credit monitoring service would raise a red flag after it was too late, Cook said.
So what’s the real use of this credit monitoring that the companies are handing out in the aftermath of privacy failures if its not going to protect you? “Oh, you’ve had your bank account emptied, your house sold, and your wife has received a divorce notice. And by the way, your credit is non existent but that may be due compute hackers….”
