Identity Theft News

Data security compliance costs plague firms

Wednesday, September 16, 2009

Costs of compliance and number of vendors with access to sensitive information are cited by a majority of businesses as stumbling blocks to preparations for new data security regulations taking effect in Massachusetts next March.

According to a survey conducted by Goodwin Procter and the International Association of Privacy Professionals (IAPP), companies face major challenges in complying with the state’s data security rules that impose significant requirements on entities possessing personal information of state residents, including entities based outside Massachusetts.

The survey revealed that 60 percent of information privacy professionals say their organizations have more than 10 vendors with access to personal information and 30 percent say they have over 100 vendors with access to personal information - which complicates the compliance process.

Complying with the new regulations is also costing 33 percent of respondents more than $50,000. Another 12 percent of those surveyed say their organizations have spent between $10,000 and $50,000 and 44 percent have spent more than 100 hours in compliance activities.

Although the cost of compliance is significant, other research indicates that data breaches are far more costly to contain. In 2007, the average cost of a data breach was $6.3 million, according to a Ponemon Institute study released earlier this year.

ADNFCR-1765-ID-19363883-ADNFCR

Related News:

Threat of identity theft shows need for online security - 11.19.2009
As Americans live increasingly large portions of their lives on the internet, the possibilities and incentives for remote identity theft increase as well. A report in the New York Times advises caution, and gives tips for constructing an "online bulwark" to prevent theft and fraud.

Wi-Fi network security vulnerable to man-in-the-middle attacks on smart phones - 11.16.2009
Researchers last week revealed a weakness in mobile network security that could allow for so-called "man-in-the-middle" techniques to steal personal information from users of certain types of mobile phones.

FDIC warns banks of money transfer 'mules' duped by cybercriminals - 11.2.2009
In a new warning to banks about illicit electronic fund transfers, the Federal Deposit Insurance Corporation (FDIC) said last week that online bank account theft is rising using "money mules," unwitting job-seekers who are duped by cyber crooks into wiring funds from hacked bank accounts.

Obama addresses cybersecurity awareness in YouTube video - 10.21.2009
Online cyber attacks and identity theft have never been higher, a threat environment that challenges U.S. security every day. President Obama has designated October as National Cybersecurity Awareness Month, which he addressed in a web video last week.

Facebook application security hole exposes millions to hacking, researcher says - 10.19.2009
A security researcher is warning Facebook users about potential vulnerabilities in Facebook applications that could allow cross-site scripting (XSS) hacker attacks for hijacking user accounts.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now