Hackers, insiders blamed for US data breach growth US organisations lost even more sensitive data in a greater number of information security screw-ups last year, according to a new survey. A study by the Identity Theft Resource Center (ITRC) calculated that 35 million data records were exposed last year in 656 admitted incidents, up 47 per cent compared to the 446 data loss …
Yeah, its the hackers and insiders. It has nothing at all to do with businesses choosing to buy their technology and tech services from the lowest bidder. Nothing at all to do with that.
It also has nothing at all to do with business leaders being utterly clueless about technology, and deploying stuff for the sake of it. Businesses suffer from "keeping up with the Jones'" as much as middle England.
And the value that personal data has has nothing at all to do with the greed of banks and financial institutions. Personal data has an artifically high value because all a fraudster needs is some personal info and he can take out loans in your name, or all the other tricks they get up to. The eagerness of banks to loan money without taking real steps to confirm who they are speaking to means that they ended up relying on security through obscurity: hoping that only the customer knows their name, age, addresses, mother's maiden name etc.. Lenders also don't want the customers to think too hard about whether borrowing is a good idea, so John Public being able to ring some company and have them loan money over the phone there and then is what lenders want. Just take a look at some of the horrible adverts on daytime TV aimed squarely at the financially clueless for products like remortgages.
Of course, blaming hackers on the other side of the world plays to people's prejudices against minority groups and people who might have a different skin colour. Rich business owners also seem to think that given half a chance anyone will rip them off[1], so it must be the insiders too.
[1] Being the fully qualified internet-couch-psycologist that I am I determine that that is a classic case of projection...... how did the rich guy get rich in the first place? It wasn't through generosity or charitable contributions, I can tell you that!
i have seen lots of large corporations with public exploits from free software running on their systems. ive been into the sales dept of 2 large super markets in america watching the staff processing orders. also with some various large online retailers have basic sql injection vulnerabilites. ive even seen sites that say "godaddy secure tested" or "verisign secure" that have very trivial or dangerous vulnerabilities.
A junior Zanew Labour minister asked the ITRC to prepare a report for the British Government on the status of Westminster's data security.
When the analysts finally stopped ROTFL(t)AO, they pointed out that, even if they devoteds 100% of their resources to the task, the report would not be ready before 2015 at the very earliest, and that there were insufficent trees in the Amazon rainforest for a document that size.
The minister's response to ITRC was last seen in a briefcase on the last train to Clarkesville, between a stuffed walrus and a filing cabinet labelled "beware of the leopard"...
The Register 
Biting the hand that feeds IT
Copyright. All rights reserved © 1998–2024
