Insider Threat Example: Leaked Clinton Memo Provides At Least 5 Good Security...
Mid-last week it was widely reported, probably more so in the national news than here in Iowa, that one of Hillary Clinton’s top campaign folks had written a memo to her urging her to skip Iowa and...
View ArticleAverage Cost of ID Theft Per Victim is $31,356
Finally, a report that looks much more accurate with regard to how much identity theft costs the VICTIMS of a privacy breach. Most reported victim costs that I have seen in the past seemed much too low...
View ArticleTexas EZPawn Throws Away Its Security Promises and Customers’ Privacy and...
Well, here is yet another company that had a nasty habit of just throwing papers containing their customers’ personally identifiable information (PII) into publicly accessible trash cans. On June 24 a...
View ArticleCompany Uses Negotiated Checks For Packing Material!
Not much surprises me any more with regard to some of the silly things that organizations do with printed PII that put the involved individuals at risk. However, I was surprised when I watched an ABC...
View ArticleDo You Know Your Data Retention Requirements?
There have been several interesting news reports recently about data retention proposals, plans, practices and laws in the U.K. Currently there are proposals to require emails to be retained for a full...
View ArticleMore Data Retention Tips And Considerations
Here are some more data retention tips and considerations as a follow-up to my Tuesday blog post… There is the remainder of the second article, “Miscellaneous Data Retention Considerations,” in my...
View ArticleBlackberry Disposal Lessons From McCain & Palin
Another real-life example to show the importance of having effective policies and procedures in place for not only information disposal, but also for the disposal of computers and storage media…...
View ArticleHIPAA, HITECH Act and Disposal Problems
Here’s yet another incident that provides very good lessons that could be incorporated into information security and privacy training sessions as a case study, particularly for HIPAA compliance as well...
View ArticleDisposal Dummies Cause Privacy Problems
A couple of weeks ago I was doing a consulting call with a small startup business (that in a short span of time is already performing outsourced cloud processing for a number of really huge clients)...
View ArticleIf there’s a Shred of Evidence it’s Not Shredded
“What’s the minimum shred size?” Recently I got a great question from one of my Compliance Helper clients: “This may seem like a silly question, but is there any type of HIPAA compliance requirements...
View Article
More Pages to Explore .....