Identity Theft News

Extent of identity theft and data breaches largely hidden

Tuesday, July 21, 2009

Despite stricter laws on disclosure of data breaches in places like California, a lack of proper incentives in reporting incidents may keep private companies from accurately reporting the extent of data theft, according to a web security expert at Hewlett-Packard.

Because compliance laws vary from state to state and are vaguely worded, many companies do not report data breaches in a timely manner, if at all, writes Todd Densmore at HP's security lab blog.

Densmore points out that disclosure policies only serve to highlight the number of incidents, while not necessarily encouraging a more proactive approach to data security.

That could be changing. Beginning August 1, the Federal Trade Commission will begin enforcing a Red Flags Rule that requires creditors and financial institutions to implement a written Identity Theft Prevention Program designed to detect the warning signs of identity theft in their day-to-day operations.

Beginning in 2010, Massachusetts will require all Social Security numbers, bank account numbers and credit card numbers to be encrypted when transmitted wirelessly or on public networks and when carried on portable devices like laptops, PDAs and flash drives.

"Preventative security medicine is the best and most cost effective policy," Densmore said in his post. "The cost of preventative security pales in comparison to the cost of cleaning of the mess after getting breached."
ADNFCR-1765-ID-19274993-ADNFCR

Related News:

Threat of identity theft shows need for online security - 11.19.2009
As Americans live increasingly large portions of their lives on the internet, the possibilities and incentives for remote identity theft increase as well. A report in the New York Times advises caution, and gives tips for constructing an "online bulwark" to prevent theft and fraud.

Wi-Fi network security vulnerable to man-in-the-middle attacks on smart phones - 11.16.2009
Researchers last week revealed a weakness in mobile network security that could allow for so-called "man-in-the-middle" techniques to steal personal information from users of certain types of mobile phones.

FDIC warns banks of money transfer 'mules' duped by cybercriminals - 11.2.2009
In a new warning to banks about illicit electronic fund transfers, the Federal Deposit Insurance Corporation (FDIC) said last week that online bank account theft is rising using "money mules," unwitting job-seekers who are duped by cyber crooks into wiring funds from hacked bank accounts.

Obama addresses cybersecurity awareness in YouTube video - 10.21.2009
Online cyber attacks and identity theft have never been higher, a threat environment that challenges U.S. security every day. President Obama has designated October as National Cybersecurity Awareness Month, which he addressed in a web video last week.

Facebook application security hole exposes millions to hacking, researcher says - 10.19.2009
A security researcher is warning Facebook users about potential vulnerabilities in Facebook applications that could allow cross-site scripting (XSS) hacker attacks for hijacking user accounts.
View Related Resources
Or
Watch an Online Demo
Or
Have us call you now