Security guard

Skill gap widens for information security professionals

April 9th, 2015

Today, organizations are finding it difficult to manage IT security threats and avoid error. They also face challenges to recover after cyber attack. According to the survey, by 2020 there will be shortfall of 1.5 million information security professionals.

The IT security of companies is being threatened by understaffed workforce and the high level of complexities. (ISC)2 conducted survey polled 3,000 information security professionals and practitioners worldwide.

“Our first workforce study was conducted in 2004 to illuminate critical concerns within the information and cyber security that were struggling for attention,” said Adrian Davis, managing director, Emea, at (ISC)2.

“The 2015 report shows that many of these issues are finally getting much-needed budget and priority, but we are facing new challenges and our skills and staffing challenge is growing,” he added.

Davis mentions that the findings are more or less similar to US and Europe.

“There are some small differences from country to country, but at a higher level, as information security environments become increasingly homogeneous, there is not much variance,” he told Computer Weekly.

“This is likely to be due to the fact that the legal and privacy environment in Germany may make companies more sensitive to protecting information,” he said.

The study also shows that security spending is increasing across the companies.

“We are playing catch-up in an environment where information security has never really made its case as being an interesting and exciting career, and where security professionals are retiring faster than they are being replaced,” said Davis.

Laptop theft leads to data breach

January 12th, 2015

Sunglo Home Health Services patients were affected by the recent breach as laptop containing sensitive data was stolen from the Harlingen, Texas-based facility. According to the reports, the burglar broke into a van in the Sunglo parking lot and drove away after filling the vehicle with various tools and gear.

It happened that he returned and broke into the Sunglo building by breaking a window with a fire extinguisher and stole computer that held patients’ Social Security numbers and personal information, including PHI.

The numbers of affected patients are not known which also include elderly and disabled persons. Sunglo drives patients across the Valley in the vans, which are kept in a parking lot at the Harlingen corporate office.

“We’re just worried about the safety of the patients themselves because of the information. We had to contact local police to see what we could do,” Means told.

The potential suspect is behind the bar. Harlingen police arrested Matthew de la Cruz based on surveillance camera footage. The security aspect of the laptop was not known including the status of encryption.

“It leaves you uneasy, just something that was there that you can’t recover, it’s an uneasy feeling,” Means told Action 4. “We don’t really want this to happen again.”

Get your personal as well as office laptops encrypted by Alertsec

Unencrypted laptops present a major risk of data loss. 80% of information theft is due to lost or stolen laptops and other equipment. About 50% of network intrusions are performed with credentials gathered from lost or stolen devices. The penalties for a data breach are severe not only in terms of the monetary fines imposed on the organization, but also the potential loss of trust from customers and suppliers. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.

Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.

Discharge Paper work causes data breach

January 4th, 2015

Around 20 patients suffered data breach when their medical information was passed to other patient along with her discharge papers. The breach in Medical Center of Aurora apparently gave Karen Billings seven pages of operating room records after her hospital release.

The information contained Protected Health Information (PHI) for other patients. The data also included patient names, dates of birth, the doctor’s name, the procedure done, and the prescribed medication.

“I was shocked. I was mad. I was hurt that I had somebody else’s information,” Billings said.  “I wouldn’t want my stuff out there.”

In a statement, the healthcare organization said that it takes the protection of patients’ private information very seriously.

“We were made aware that one day’s surgery schedule was mistakenly given to a patient on November 22nd and, per policy, our Facility Privacy Official immediately began an internal investigation and we are notifying the affected patients,” the statement read. “We are committed to protecting the privacy of our patients and are reviewing internal procedures to determine additional safeguards we should implement.”

The affected individuals were shocked to get the data breach information from media rather than Medical Center of Aurora itself.

“If the doctor knew about it, the administrators knew about it, the hospital knew about it, then they should’ve been proactive instead of waiting, trying to hide it,” Scott Anderson told the news station.

Get your personal as well as office laptops encrypted by Alertsec

Unencrypted laptops present a major risk of data loss. 80% of information theft is due to lost or stolen laptops and other equipment. About 50% of network intrusions are performed with credentials gathered from lost or stolen devices. The penalties for a data breach are severe not only in terms of the monetary fines imposed on the organization, but also the potential loss of trust from customers and suppliers. Encryption software greatly enhances the security of your organization’s data as the information is not compromised if a laptop is lost or stolen.

Alertsec Xpress is the full disk encryption service that delivers a mobile data protection system for all information stored on laptops used throughout your organization.