Log in

Posts Tagged ‘Government’

The European Commission plans to implement new rules in the EU

July 19th, 2011

Cyber-attacks on big and small companies are making headlines these days. Valuable information is getting compromised. This has led the European Commission to consider revising the European Union’s personal data breach notification laws.

Most data about customers like names, addresses and bank account details is held by ISP’s and Telecom operators. According to the ePrivacy Directive they are required to keep this data safe and inform users if sensitive information has been compromised. They are also required to inform about data breaches to the relevant national authority.

Sometimes national laws conflict with those implemented by the European Union. What is important at this point of time is to create a law that would be equal for all Member States.Digital Agenda Commissioner Neelie Kroes is currently seeking opinion related to laws and regulations from all Telecom operators ISPs, Member States, data protection authorities, national regulatory authorities and consumer organizations.

“The duty to notify data breaches is an important part of the new E.U. telecoms rules,” she said. “But we need consistency across the E.U. so businesses don’t have to deal with a complicated range of different national schemes. I want to provide a level playing field, with certainty for consumers and practical solutions for businesses.”

In addition, Justice Commissioner Viviane Reding is of the opinion that the data breach notification should also include online banking, video games, shopping and social media.

“It is important that users are notified if someone has unlawful access to their data. A social network with more than 200 million users in the E.U. must stick to E.U. law, even if it is based in the United States and its data is stored in a so-called cloud,” said Reding referring to Facebook.

“Seven days is much too long,” she said, referring to Sony’s delay in reporting a security breach involving 77 million PlayStation Network account holders in April this year.

ISP’s, operators can send in their opinions until Sept. 9. Input is required on security techniques, notifying victims, the means and content of notifications and levels of breaches (based on their seriousness, urgency).

The European Commission hopes that the new rules will help in better data protection thereby reducing the no of data breach cases.

Data security with Alertsec

Alertsec is here to take care of our security issues especially for anyone working with PCs. Alertsec Xpress is the service that automatically protects ALL information you store on your PC. The fact that we now buy more laptops than desktops shows that the information we all store is increasingly more vulnerable to be exposed. It is a much higher risk to lose a laptop than a desktop computer.

Encryption is the only secure method for complete protection of data stored on your hard disk. Today laptops are overtaking desktop PCs as the major source of computing and media storage, laptops frequently store an organization’s most valuable information. Thus laptop encryption is becoming more and more important.

Alertsec Xpress offers full disk encryption and is therefore superior to other encryption methods when comparing security, performance, robustness and ease-of-use for both administrators and users.

The European Commission plans to implement new rules in the EU (alertsec.com)
Goatse Security hacking group orchestrated a security breach of AT&T’s servers (alertsec.com)

No comments »

Posted in Computer security, Data Protection, Lawsuits and settlements, computer security software, data breach, data encryption

Tags: Brussels Enter your zip code here European Commission European Union Government Institutions Internet service provider José Manuel Barroso Multilateral

Laptop Ghost strikes at Oregon National Guard

June 22nd, 2010

A laptop which belonged to the Oregon National Guard member was stolen earlier this week forcing the military to contact all the members who might be impacted by this incident.

As per the details by the Oregon National Guard, the laptop was stolen a couple of days ago on 21st of June from a vehicle. Apparently, the laptop was being used by the guard member to do work from home.

Captain Stephen Bomar, Chief of Public Affairs for the Oregon National Guard, said in a news release, “Although this laptop is password protected, with potential exposure of individual personal information, we are doing everything possible to notify individuals about the theft” .

The Oregon National Guard and The National Guard Bureau are individually contacting service members whose sensitive information may be compromised. Legal services are also available in the event a service member needs it through the Oregon National Guard Office of the Staff Judge Advocate.

Once again the incident raises serious eyebrows about the methods adopted by large organizations to secure data, store data and encrypt sensitive and critical information.

The laptop theft incident is not new as earlier in April this year, burglars had attacked the home of Jerome Avery stealing a laptop from his house.

Visit Source story

Get Laptop Encryption now !!

While huge sums are spent on protecting internal networks from hackers, employees are walking out the front door with laptops that not only have vast quantities of data stored on them, but also have applications connecting to internal networks and protected websites.

80% of information theft results from lost or stolen equipment. 50% of network intrusions take place using credentials from lost or stolen equipment. With laptop encryption installed, none of the information or credentials would have been lost.

No comments »

Posted in Encryption, laptop theft

Tags: Government Military National Guard Oregon Oregon Military Department Oregon National Guard Theft United States

Data Security Issues at National Intelligence Agency, South Africa

June 20th, 2010

: Data Security Issues at NIA, South Africa

The intelligence services at South Africa have been blasted by the auditor-general for failing to secure information in their computer databases.

Post the parliamentary elections that have happened since 1994, it is for the first time that auditor general scrutinized the reports of the following intelligence services:

The National Intelligence Agency
The South African Secret Service
The Secret Service account of the South African Police Service

The auditor-general has raised concerns about the security of information which is contained in the NIA databases.

Apparently, the users were allowed “inappropriate access” to systems profiles which allowed them to modify programmes & alter critical financial information.

According to the audit report, “Sensitive transaction codes had not been locked in production to prevent general user access … the financial application settings allowed access to a programme that could be used to delete financial transaction data”.