• Subscribe to our feed
  • Like us on Facebook
  • Follow us on Twitter
  • Join Us on LinkedIn

Considering Ethics in Security

by Christine Meyers 2 November 2011

Recently, on the heels of the ISSA International Conference, noted authority Michael Angelo raised the question of ethics in security. It is a topic that comes up from time to time and never ceases to fascinate me. In his recent blog posting, Michael writes “Ethics is a particularly interesting topic as the security industry is always [...]

Read More →

The Challenges of HIPAA Compliance

by Christine Meyers 25 October 2011

Meeting the Challenge of HIPAA Compliance HIPAA, the Final Privacy rule and various state regulations governing patient privacy all have one thing in common. They all require organizations to demonstrate access to PHI on a minimum need-to-know basis. That places the burden of governing access on the institution. In an audit situation, that means the [...]

Read More →

Ponemon: Real Risks of Insider Threats Often Stay Hidden

by Christine Meyers 18 October 2011

It’s easy to point fingers when another organization has an insider fraud incident. But information from the new Survey on the Risk of Insider Fraud by Attachmate Corporation and Ponemon Instituteshows that more organizations need to turn a scrutinizing eye toward their own risk. The survey encompassed more than 700 organizations and revealed some alarming [...]

Read More →

Check out the new 2011 Verizon Data Breach Report

by Christine Meyers 7 October 2011

The new Verizon report came out this week. Always a favorite, this report highlights insider fraud, breach risks and other useful data. Here are some of my favorite stats: • 83% of attacks were classified as “opportunistic” meaning the victim was identified because they exhibited a weakness or vulnerability that the attacker could exploit. (pg. 52) [...]

Read More →

We See Insider Fraud Every Day

by Christine Meyers 2 October 2011

Enterprise fraud and misuse is on the rise.  A recent study by the Ponemon Institute found that of the organizations surveyed, on average respondents experienced more than one incident of employee-related fraud per week – about 53 in a year’s time. Twenty-four percent of respondents indicated that their organizations experienced more than 100 incidents in the past 12 [...]

Read More →

The Impact of Fraudulent Behavior: Internal v External

by Christine Meyers 25 September 2011

Financial losses from the recent data hacks on banks and online services are being revealed bit by bit. For example, last month Citigroup disclosed that its credit card customers suffered losses of around $2.7 million from their account details being stolen.  While  the loss is serious it actually only applied to 1% of the cards affected [...]

Read More →

Next Entries →