Unknown hackers steal details on U.S. Joint Strike Fighter project: Scientific American Blog
An unknown cyber criminal (or group of them) has broken into computer systems housing information about the U.S. Defense Department’s $300 billion Joint Strike Fighter project, the Wall Street Journal reports today, citing a number of “current and former government officials familiar with the attacks.”
It’s unclear how much damage the attacks have caused to the [...]
Visa leads effort at PCI conference to minimise payment information vulnerability
Visa opens PCI Dubai Conference
Dubai, UAE 14 April 2009: Visa International, the leading payment solutions provider, has participated in PCI Dubai, the leading payment industry conference and addressed stakeholders from across the GCC payment industry on various issues surrounding data security and payment card fraud. Participants also shared best practices, emerging technologies, and discussed ongoing [...]
Fighting Fraud with the Red Flags Rule
Are you complying with the Red Flags Rule?
The Red Flags Rule requires many businesses and organizations to implement a written Identity Theft Prevention Program designed to detect the warning signs – or “red flags” – of identity theft in their day-to-day operations. Are you covered by the Red Flags Rule? Read Fighting Fraud with the [...]
PCI Council gives helping hand to merchants
PCI Council gives helping hand to merchants
Prioritized Approach framework to help attain PCI DSS compliance
Ian Williams, vnunet.com 04 Mar 2009
The Payment Card Industry Security Standards Council (PCI SSC) has released a new resource designed to help merchants struggling to attain compliance with the PCI Data Security Standard.
The global payment industry body launched the Prioritized Approach [...]
Identity Theft – PCI Chiefs Defend Standards, Plans – eWeek Security Watch
It’s a gross oversimplification of an utterly staggering technical and social challenge, and he knows it as well as anyone, but it’s hard to argue with PCI Security Standards Council General Manager Bob Russo’s assertion that when it comes to improving electronic data security and related matters of individual privacy, “something is much better than [...]
NIST releases draft guidelines for FISMA compliance
The National Institute of Standards and Technology (NIST) on Thursday released new guidelines to help federal agencies comply with the Federal Information Security Management Act (FISMA).
The document, titled “Recommended Security Controls for Federal Information Systems and Organizations,” is in its third revision, but this is the first major update since its initial publication in December [...]
Nosy nurse runs afoul of HIPAA regulations – Cortlandt Forum
Breaching the privacy of a patient’s records could send her to jail and jeopardize the entire clinic.
What began as “harmless” poking through medical records ended in an arrest and possible jail time for a licensed practical nurse who shared a patient’s medical information. She put her physician-employer in jeopardy too.
Ms. A, 29, had worked at [...]
Palo Alto Networks Hosting Webinar with Forrester on PCI Audit Process
Jan 29, 2009 (Close-Up Media via COMTEX) –
Palo Alto Networks will host a webinar with Forrester Research Security and Risk Management Analyst, John Kindervag on Tuesday, February 10 at 10 a.m. PST, 1 p.m. EST.
PCI audits are often daunting, both in scope of effort and associated costs, and this informative webinar will review how to [...]
RBS WorldPay Breach Rings Alarm Bells About Acquirer Security
(December 23, 2008) The latest data-breach battleground has shifted to merchant-acquiring and prepaid card territory. Atlanta-based RBS WorldPay, a big acquirer owned by the Royal Bank of Scotland Group that also provides prepaid card programs, late Tuesday afternoon reported a breach of its computer system that may have compromised personal information on about 1.5 million [...]
Feds finally put teeth into HIPAA enforcement
Three years after the federal laws rules on securing health care data took effect, HHS has issued its first corrective action plan. And more may be on the way.
Jaikumar Vijayan
A data security audit that the U.S. Department of Health and Human Services conducted at Piedmont Hospital in Atlanta last year was widely viewed within the health care [...]
