Posts Tagged ‘computer security software’

Top Data Breach Incidents

June 19th, 2010
Credit Cards
Data Security Breaches

ABC News has published a list of 10 severe data breaches that have affected the industry in this decade beginning from 2000.

The list of data breaches has been compiled by a San Diego-based non-profit, called the Privacy Rights Clearinghouse. The list includes  exhaustive list of data breaches by government agencies, institutions and corporations. Some of these incidents highlight the breaches of all kinds and including the number of people affected.

Let us analyze some of these incidents

  1. 2009 — Heartland Payment Systems

    The Heartland payment systems was billed as the largest credit card crime of all time. Princeton, New Jersey based Heartland  processes card payments for restaurants and other businesses. The computers which were processing 100 million transactions for 1,75,000 merchants were penetrated by hackers. In January this year, Heartland was notified by Visa and MasterCard notified Heartland about suspicious transactions.

  2. 2007 – TJX Companies

    4 years ago, the Massachusetts-based TJX informed that more than 45 million customer records in 2003 and 2004. Over $20 million were spent in investigating the incident, hiring the lawyers and notifying the customers. This incident exposes the security vulnerabilities of retailers.

  3. 2009 – U.S. Department of Veterans Affairs

    Information of around 76 million veterans was compromised when a defective hard drive was sent for repair and recycling without first having the data on it erased. Apparently, the hard drive contained millions of social security numbers.

  4. 2005 – Card Systems

    CardSystems, an Atlanta based payment transactions processor suffered a breach incident when more than 40 million card accounts were exposed to potential fraud. Infact, the leaked details that were used by hackers belonged to Mastercard accounts (68,000), Visa accounts (100,000) and other brands (30,000).

  5. 2006 – Theft of Veterans Laptop with Personal data

    Way back in May 2006, a laptop that contained personal information for millions of veterans was stolen in a burglary from the Maryland based agency. Apparently, over 17.5 million veterans were at risk and were offered to cover the cost of monitoring their credit for one year.

  6. 2008 – Bank of New York Mellon

    When the Bank of New York Mellon lost a box of computer data tapes with information such as Social Security numbers, names, addresses and possibly bank account numbers, the personal information of more than 12.5 million people was compromised.As a settlement amount, Connecticut was paid $150,000 by the bank and was also promised credit monitoring and fraud alerts for the affected people for 36 months.

  7. 2007 – Certegy Check Services

    A St. Petersburg, Florida-based financial services firm, Certegy revealed the theft of customer records by an employee that included credit card, bank account and other personal information. The volume estimates of the data breach incident was found out to be $ 8.5 million.

For further insights about the breach incidents, do check out the ABC News article on 10 of the Top Data Breaches of the decade.

Security against Data Breach with Alertsec Xpress

Why do data breach incidents happen in the first place? Perhaps your organization didn’t take the requisite steps or there was some level of negligence with the handling of data.

If you use a data security software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or senstive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Related articles by Zemanta
Enhanced by Zemanta

1 comment »

Posted in Data Protection, data breach

Tags:

Data Breach at San Bernardino Community Hospital

June 15th, 2010
San Bernardino, California, city and village.
Image via Wikipedia

The Community hospital of San Bernardino has been reprimanded with a fine of $325,000 for violating confidential patient data in a major data breach incident. Apparently, the fine was imposed on the hospital because there was unauthorized access of the medical information of 204 patients by an employee. Initiialy, the fine was calculated at a value of $250000.

However, another $750000 was added when a separate case involving the unauthorized access of medical records of 3 more patients was found out.

Diane E. Nitta the hospital administrator said that hospital has,”enhanced staff education efforts around patient privacy (and) put in place expensive security measures that guard against inappropriate access to our patients’ records.”

According to the official spokeswoman of the hospital, Tobey Robertson none of the information was used to harm the patients.

How did these incidents happen?

  1. In the first case, a radiology technician had obtained access to computerized medical records of 204 patients without a clinical need for the information.
  2. In the second incident, a clerk had let a friend enter a restricted area, where the person heard confidential patient information given by three patients during the admitting process.

Apparently, the Department of Public Health has fined 5 authorities for data breach and the hospital is one of them.

Frequent incidents like these highlight the structured use of computer security software and data encryption software which ensures the protection of data and prevents loss of information incase of theft and losses.

Stay Secure with Alertsec Xpress

Why do data breach incidents happen in the first place? Perhaps your organization didn’t take the requisite steps or there was some level of negligence with the handling of data.

If you use a data security software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or senstive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Related articles by Zemanta
Enhanced by Zemanta

No comments »

Posted in data breach

Tags:

Digital River Data Breach Incident

June 9th, 2010

When hackers executed a “highly unusual search command” against Digital River’s secured servers the data belonging to almost 200,000 individuals was exposed leading to massive data security breach.

Direct Response Technologies which is a Pittsburgh based subsidiary of Digital River sells a leading software program called as DirectTrack. With DirectTrack companies can create and manage affiliate marketing programs. Once the data is gathered by the programs it is stored on Digital River’s servers, and access to it is tightly restricted with passwords and other security measures.

It was when 19-year-old Eric Porat of Brooklyn tried to sell the purloined data for as much as $500,000, the investigators got hold of him.On being questioned, Porat has also said that he has obtained the information from India, but hasn’t revealed how he has got the same. According to Digital River the information was apparently stolen by New Delhi hackers with some level of support from a contractor working for Digital River.

According to reports Eric Porat had approached a company called Media Breakaway and had made repeated requests to them for buying the information. His idea was to sell the data to the highest bidder.

This type of data is very helpful for organizations that are interested in targeted marketing activities. The crucial data included names, email addresses, websites, and unique user-identification numbers for 198,398 individuals. The data was collected by affiliated marketing companies through a software created by Direct Response Technologies (Digital River subisidary) and was stored on password-protected servers.

Digital River Marketing Solutions Inc. has filed the lawsuit on May 13 listing Porat and his company, Affiliads, as defendants seeking information on how they obtained Digital River’s data and what they’ve done with it.

Data Security with Alertsec Xpress

If you use a data security software a theft would simply be reduced to an insurance matter and cost of the hardware plus time to rebuild the laptop. That is certainly a small price to pay compared to what can happen if you lose confidential or senstive data. Alertsec Xpress offers a very good and easy-to-use laptop security service that includes more than the traditional software licensing model. Feel free to subscribe for your personal 30-day free trial.

Related articles by Zemanta
Reblog this post [with Zemanta]

No comments »

Posted in Data Protection, computer security software, data breach

Tags:

Chinese Educational Institutions attack US Companies

February 25th, 2010

In a startling revelation, recent attacks on Google and other premier companies in the US have been tracked back to America’s old rival China. Out of these two institutes, one is believed to have strong ties with a group called People’s Liberation Army (PLA) – which has close ties with Chinese military. With this, there is lot of rumor floating in the air that the attacks were carried out by the Chines government. The news-item was published in The New York times today.

Although the American companies have discovered only now, it is generally believed that the attacks were discovered during the beginning of April last year. The primary purpose of these attacks was to steal trade secrets and computer codes. There is a strong possibility that the malicious attackers could have gained access to the Google’s system for more than 8 months which is shocking.

There hasn’t been any statement issued by China in this matter, but in previous such instances the Chinese government has said to inolvement in any kind of attack. Due to this attack, Google has even threatend to censor results on the Chinese search engine.

According to the NSA (National Security Agency) these attacks have been linked to the class of a profesor from Ukraine who was teaching computer science to vocational school students at the Lanxiang School. It is generally believed that school is grooming students as scientists who can work at military. The computer network at the school is run by Google’s top competitor Baidu.

On the opposite side of spectrum, experts give mixed views. One school of thought says that ‘School’ is being intentionally used as protection identity. Then there are people who also think that the operation has been carried out by another country in the name of schools in China.

According to James C. Mulvenon, a Chinese military specialist and a director at the Center for Intelligence Research and Analysis in Washington D.C.,“We have to understand that they have a different model for computer network exploit operations by the Chinese government volunteering as patriotic hackers to support their policies.”

The other school caught in the pick of things is the Shanghai Jiaotong School. Infact, Jiaotong is populary recognized as one of the best centers in the world for computer science studies. The bright students at the school have also defeated Stanford & Moscow students to win Battle of the Brains programming contest held by IBM in Harbin, China. A professor at the school said, “I believe there are two types of situations. One is it’s a completely individual act of wrongdoing, done by one or two geek students in the school who are just keen on experimenting with their hacking skills learned from the school, since the sources in the school and network are so limited. Or it could have been done by one of the university’s IP addresses was hijacked by others, which happens frequently,”

Staying safe with Alertsec

Alertsec Xpress offers computer security software from Check Point as a fully customizable and pre-packaged data encryption software solution. Our encryption software protects you in just a few minutes.

No comments »

Posted in Encryption

Tags: