Blog – Page 14 – TBG Security – Information Security Consulting

Interactive Data Breach Chart Shows Security Flaws Rising

Posted by: Admin

If you thought that hackers were taking a break over the last year or so, this interactive graphic will have you rethinking that opinion.

David McCandless of Information is Beautiful created the graphic with coder Tom Evans. It shows All the data breaches over the last 9 years and the number of records hacked. Each attack is displayed as a bubble, based on that victim-count. They’ve included a slick filtering tool as well which allows you to filter by organization type and ...

Read More →

4
NOV
2013

0

Cyber Criminals, Data Breach, Identity Theft

Cyber criminals capitalize on news of Boston bombing

Posted by: Admin

Cyber criminals remain indifferent and insensitive to events showcased on the national stage, such as the bombings at the Boston marathon on April 15, 2013. Since the event, the Dell SecureWorks CTU(TM) research team has been monitoring the Waledac/Kelihos botnet, which has begun distributing spam claiming to provide information about the bombing (see Figure 1). The email messages contain a single malicious link and entice victims to click the link for more information.

Read More →

22
APR
2013

0

Cyber Criminals, Information Security

boston maraathon bombing, cyber criminals, email scams, phishing, scams

BYOD – Bring Your Own Device – Good Idea?

Posted by: Admin

BYOD – The Good The Bad The Ugly

“BYOD” Bring Your own Device. A great idea that can easily turn messy. Biztech has introduced the BYOD: The Good, the Bad and the Ugly infographic asking you to answer 6 easy but important questions before you launch into a BYOD situation.

Read More →

7
DEC
2012

0

Uncategorized

3.6 Million South Carolina Social Security Numbers Stolen

Posted by: Admin

“This Is Not A Good Day For South Carolina”

Yesterday the Governor announced that the South Carolina Department of Revenue suffered a data breach affecting millions of South Carolina residents. “This is not a good day for South Carolina,” is how Gov. Nikki Haley began a Friday afternoon press conference with other state officials at SLED offices in Columbia.

“The state of South Carolina has come under attack by an international hacker,” Haley said before explaining that 3.6 million Social Security numbers ...

Read More →

27
OCT
2012

0

Data Breach, Identity Theft

data breach, identity theft, personal information, Personal information protection, PI

Massachusetts group to pay $1.5M HIPAA settlement

Posted by: Admin

WASHINGTON – Another HIPAA data breach settlement has been reached, this time with the Massachusetts Eye and Ear Infirmary and Massachusetts Eye and Ear Associates Inc. (MEEI), which will pay $1.5 million to the Department of Health and Human Services (HHS) for potential violations of the HIPAA Security Rule.

For more details check out the article in Healthcare IT News

Read More →

18
SEP
2012

0

Blog, HIPAA

data breach fees, data breach fines, HIPAA fines, HIPAA violations

Are Fax Transmissions Covered Under 201 CMR 17.00?

Posted by: Admin

Massachusetts Privacy Protection Law 201 CMR 17.00, which goes into effect March 1, 2010, does not specifically call for the encryption of fax transmissions, nor does it specifically mention how fax transmissions should be handled. With that said, the intention of the law was NOT to exempt fax transmissions of personal information (PI) from consideration when creating a Comprehensive Information Security Program (CISP). There are a couple of sections in the regulations that do refer to the transmission of PI ...

Read More →

18
JUL
2012

0

201 CMR 17.00, Blog

201 cmr 17.00, data breach, data breach laws, identity theft, mass privacy law, MGL 93H

The 201 CMR 17.00 Compliance Deadline of March 1, 2010 Is Rapidly Approaching.

Posted by: Admin

Sounds a little like Chicken Little running around saying “the sky is falling, the sky is falling”. However, the clock is ticking off precious minutes as your organization races to meet the compliance deadline for 201 CMR 17.00. If your organization has been holding out for another extension from OCABR, then I’m afraid you’re out of luck. March 1, 2010 is the drop dead date for compliance.

The final version of the regulation was released in late October and nobody has ...

Read More →

29
JAN
2010

0

201 CMR 17.00, Blog

201 CMR 17, data breach, data breach compliance, identity theft, Massachusetts Privacy law

Getting Ready For 201 CMR 17.00

Posted by: Admin

Don’t forget about the paper!

There’s been a tremendous amount written lately about how to prepare for the upcoming March 1 deadline for compliance with Massachusetts 201 CMR 17.00.
Almost everything I’ve read has focused on the electronic aspect of the regulation with little or no attention paid to how an organization will change the way they handle paper containing personal information. Just as a reminder, the intent of 201 CMR 17.00 is to establish minimum standards to be met in ...

Read More →

8
JAN
2010

0

201 CMR 17.00, Blog

201 CMR 17, compliance, data breach protection, IT Security, personal information