Wednesday, March 09, 2005

More poison coming out DSW Shoe customer data used in fraud. Credit card and purchase data of customers at 103 DSW Shoe Warehouse stores has been stolen and apparently used for fraudulent activity. [Computerworld News] 9:32:23 PM    comment [] Looks like we are getting close to a verdict Ebbers Jury Questions Supplemental Charges. Jurors at the fraud trial of former WorldCom chief Bernard Ebbers asked the judge Wednesday if they had to agree with certain "supplemental" charges by prosecutors to convict Ebbers of false regulatory filings. By APOnline. [washingtonpost.com - Technology] 9:19:04 PM    comment [] Reminds me of the prophet lack of honor in his own country Federal Whistleblower Office Faces Criticism. Whistleblowers in the federal government are supposed to have a place to go for protection from retaliation. It's called the Office of Special Counsel. One of the recent complaints received by that agency was filed by several of its own employees, who say they faced retaliation when they raised questions about policy changes within the agency itself. [NPR Programs: All Things Considered] 9:11:27 PM    comment [] Standards after the horse is out of the barn Q&A: Harald Collet on compliance and data retention challenges. Eight vendors, including Hewlett-Packard, Oracle, Sun and Hitachi, have formed the Compliance and Management of Electronic Information Working Group to develop checklists and best practices for managing electronic data. [Computerworld News] 6:31:05 PM    comment [] The Need? Process, not Privacy Laws LexisNexis Reports Theft of Personal Data. Identity thieves have compromised another company that collects and sells personal information on millions of U.S. consumers, the latest in a series of breaches that is throwing a spotlight on the practices and safeguards of a booming data-collection industry. -The Washington Post By Jonathan Krim and Robert O'Harrow, Jr.. [washingtonpost.com - Technology] Another one and another will come after this. The issue is not that we need more laws or can assume that a piece of paper with some kind of criminal penalties attached to violating what is written on it is are all that is missing to protect the consumer. The issue is that companies are not prepared from a process and resource perspective to have the kind of security and social engineering vetting of customers and employees to ensure this kind of thing doesn't happen. That information has value. It isn't just bits and bytes of information sitting on a server somewhere. Until we look at it the same way the bank does their money in the vault or my valuables in the safe deposit box, we will continue to have this kind of exposure of information. The answer is simple to say but difficult to implement. This data is a product and products have certain standards of accuracy and need for protection. And, the creator of products have certain responsibilities for their products in the marketplace. 11:34:02 AM    comment []

© Copyright 2005 Judy Smith. Last update: 4/22/2005; 5:19:23 PM.