Amazon continues to woo government agencies for their cloud business. The company announced today that it has achieved Federal Information Security Management Act FISMA Moderate authorization and accreditation from the General Services Administration GSA.
via Amazon Adds FISMA Moderate Authorization and Accreditation – ReadWriteCloud.
Security specialists Imperva has reported that it’s found stolen card for as little as $2 for a Visa card, climbing up to $6 for a Discovery card. The particular site selling these details is not, I would argue, at the cheap end of the market
via Going cheap: stolen credit cards | DaniWeb.
Officials in a number of German state governments have owned up to using the Quellen-TK Trojan Horse software in criminal investigations to intercept encrypted telecommunications on PCs.
via German officials admit to deploying intercept software.
An eavesdropping tool allegedly used by the German government to intercept Skype calls is full of security problems and may violate a ruling by the country’s constitutional court, according to a European hacker club.
via German government’s Skype spying tool has holes, hackers say.
The storage device held a complete back-up copy of the firm’s data, including medical records related to the stent malpractice claims, along with patient names, addresses, dates of birth, social security numbers and insurance information.
via Physician’s lawyers lose patient records – baltimoresun.com.
Adult & Pediatric Dermatology, a firm that offers surgical and cosmetic skin care from offices in Marlborough, Westford, Concord and Wolfeboro, N.H., lost more than 2,000 patient records last month when a computer flash drive was stolen from an employees car
via Thousands of medical records stolen in car break – Framingham, MA – The MetroWest Daily News.
All 4.9 million TRICARE military health plan beneficiaries that were affected by a recent data breach will be notified by mail, but they won’t be offered free credit monitoring services.
via TRICARE Breach Notification in Works.
Microsoft used the same technique that worked in its earlier takedowns of the Rustock and Waledac botnets, asking a U.S. court to order Verisign to shut down 21 Internet domains associated with the command-and-control servers that form the brains of the Kelihos botnet.
via Striking a domain provider, Microsoft kills off a botnet.
The PCI SSC stated that while Visa is not requiring merchants to file a ROC or AOC, the merchant still has to ensure that it is PCI DSS compliant. This means that the merchant still must go through the PCI compliance assessment process of a ROC or respective SAQ to ensure that their controls are functioning properly.
via The (EMV/Contactless) World According To Visa « PCI Guru.
