LinkBack URL
About LinkBacksRead more.UK organisations faced £1.9m bill per incident in 2010, report says.
Read more.UK organisations faced £1.9m bill per incident in 2010, report says.
They deserve all the get IMO, customers are entrusting them with private data so they should ensure it's properly secured. I mean it's not like it's hard.
Yes and no. Implementing the physical and logical side is not too hard, though it does make doing most other IT related tasks far more complex, however by far the biggest problem is the users when it comes to security. You can have complete buy in from the board all the way down. You can have regular training for your users. You can have regular penetration tests that even include social engineering and you will still get someone who decides to be completely void of brain cells for 2 minutes.Originally Posted by watercooled
However, any company that chooses the head in the sand approach to security deserves all they get as you say.
"In a perfect world... spammers would get caught, go to jail, and share a cell with many men who have enlarged their penises, taken Viagra and are looking for a new relationship."
Oh I completely agree, it just annoys me so much when you hear of companies or even the government losing data on CDs or flash drives without so much as thinking of encryption.
Good, frankly. There are plenty of products out there than can enforce the use of encrypted removable storage where such a thing is required and any company not making use of them when there's a chance that someone can be dumping any of my data to a USB stick is skimping on a cost that is an absolute requirement in my eyes when handling public data in such a manner.
Well, I just had an email from Play.com suggesting a third party company they use has just had a breach. Not gonna be happy if my info's been leaked.
But how will you find out? When Dabs made a hash of their new system and users were logging on to see other people's personal details in their account details, I emailed Dabs to ask whether I'd been affected - particularly since I was frozen out of my account. To date I have had 0 reply other than the auto-response that they had received my email. You'll never know if you were affected cos they're hardly likely to fess up to exposing you to the risk of credit fraud.
Considering how many similar emails they probably received, they could have at least typed up a single response to send to everyone in reply. I really have no sympathy for companies losing data, it's so frustrating when you consider how people like myself will go to great lengths to protect their own data and some careless imbecile manages to lose data belonging to millions of people.
There are currently 1 users browsing this thread. (0 members and 1 guests)
SCAN.care@HEXUS
Posting Permissions
Reply With Quote