IBM Discovers Encryption Scheme That Could Improve Cloud Security, Spam Filtering
A researcher at IBM reports having developed a fully homomorphic encryption scheme that allows data to be manipulated without being exposed. Researcher Craig Gentry’s discovery could prove to be important in securing cloud computing environments and fighting encrypted spam.
via IBM Discovers Encryption Scheme That Could Improve Cloud Security, Spam Filtering.
“Thousands” Of Medical Records Discovered In Recycling Bin
Anyone who peered inside the mixed paper bin at the Dupont Recycling Center this afternoon got an eyeful.
Files, in plain sight, which authorities say contained sensitive medical and identity information.
“Upon finding those, they discovered it wasn’t a small amount. it was a large amount that we had to notify hutcheson medical center and one other [...]
UC Berkeley Hit With Major Data Theft
If you’re a current or former University of California, Berkeley student, and have taken advantage of the on-campus health services at some point in the past ten years, you may want to check your credit report. The university today announced that it has discovered a massive data theft involving 160,000 current and former UC Berkeley [...]
Air traffic systems vulnerable, IG states
An audit of the Web applications connected to air-traffic control networks found hundreds of critical vulnerabilities in the software and documented dozens of cyber incidents that continue to be unresolved, auditors stated in a report to the Federal Aviation Administration released this week.
During the investigation, auditors from the Office of the Inspector General for the [...]
StorefrontBacktalk » Blog Archive » Verizon: Retail Data Breaches Typically Discovered By Accident
StorefrontBacktalk » Blog Archive » Verizon: Retail Data Breaches Typically Discovered By Accident .
PCI Compliance: Frequently Asked Questions
Payment card industry compliance is confusing for many ecommerce merchants. But it potentially affects every merchant that accepts credit cards payments. Failure to understand the PCI compliance standards could result in higher merchant account fees and fines from the credit card issuers.
Merchants oftentimes have similar general questions on PCI compliance. We posed some of them [...]
American Recovery & Reinvestment Act Significantly Impacts HIPAA – Mayer Brown – 14/03/2009, Information Security & Risk Management, Information Technology Law, Data Protection, Pharmaceutical, Healthcare & Life Sciences, Healthcare
United States: American Recovery & Reinvestment Act Significantly Impacts HIPAA
14 March 2009
Article by Debra Bogo-Ernst, Rebecca Eisner Jeffrey P. Taft, and A. John P. Mancini
Originally published March 12, 2009
Keywords: American Recovery & Reinvestment Act, ARRA, Health Insurance Portability and Accountability Act, HIPAA, HITECH Act, Covered Entities, Business Associates, direct liability
The American Recovery & Reinvestment Act [...]
Law requires health data breach notifications — Federal Computer Week
The recently enacted economic stimulus law includes new requirements for how companies must notify people of breaches to their protected health information. Some experts say the rules could lead to federal breach notification requirements for other types of data.
Health data experts are still studying provisions in the $787 billion spending law that will expand what [...]
Identity Theft – PCI Chiefs Defend Standards, Plans – eWeek Security Watch
It’s a gross oversimplification of an utterly staggering technical and social challenge, and he knows it as well as anyone, but it’s hard to argue with PCI Security Standards Council General Manager Bob Russo’s assertion that when it comes to improving electronic data security and related matters of individual privacy, “something is much better than [...]
Retailer Wireless Devices Largely Unprotected
A new survey shows 44 percent of the wireless devices used by retailers are vulnerable to attacks by data thieves. And that’s the good news. A year ago, the same Motorola survey showed 85 percent of retailers were sitting targets for drive-by data attacks. New PCI standards phasing out Wireless Equivalent Protocol–the weakest form of [...]
