http://www.databreaches.net/?p=8059
Report: Data Breaches Hike Fraud Risk 400%
November 2, 2009 by admin Filed under Commentaries and Analyses
By Doug Pollack, Chief Marketing Officer for ID Experts:
Because data breaches have become such commonplace incidents, there is concern that people have become desensitized to the potential harm they face upon receiving a notification letter from an organization informing them that sensitive information has been lost or misappropriated.
A recently published report from Javelin Strategies should be a wake up call to those people.
The Javelin report, Data Breach Notifications: Victims Face Four Times Higher Risk of Fraud, is based on multiple years of data and includes updates on 2009 data breaches, implications of changes to the legislative landscape and the technical means by which data breaches occur.
This report should also be heeded by those banks, healthcare organizations, government agencies, insurance companies and others that we entrust with our social security and checking account numbers, birthdates and mothers’ maiden names, and in some cases our personal health information.
Primary Questions
Is there a link between data breach notification letters and identity fraud?
Are data breach notification letters working?
In the face of escalating data breaches, what should financial institutions and other companies do to protect brands and customer loyalty?
How do victims respond to breach notification, and how does this impact their relationship with their financial institution?
Are paper or electronic records most vulnerable?
How are criminals obtaining data records?
There is now proof that data breach incidents put the affected individuals in harms way.
This report is mainly based on consumer data collected from Javelin’s annual Identity Fraud Survey. The survey is conducted each year using computer-assisted telephone interviewing (CATI) via random-digit dialing from 4,784 respondents in October 2008, 5,075 respondents in October 2007, and 5,000 respondents in October 2006. The surveys targeted respondents based on representative proportions of gender, age and income compared to the overall U.S. online population.
Some data also came from Dataloss.db.org, an open community research project that documents known and reported data loss incidents worldwide. Some data also came from the Identity Theft Resource Center, a non-profit organization that compiles information about public data breaches to help understand and prevent identity theft.
The responsibility for doing everything possible to help these people address this harm — from identifying identity fraud to cleaning up the fraud — should fall squarely on the laps of the entrusted organizations.
The Publisher gives permission to link, post, distribute, or reference this article for any lawful purpose, provided attribution is made to the author and to Information-Security-Resources.com
Strategy involves using whatever tools work. If the student was truly concerned about his anonymity, there were better ways of ensuring it. However, if the University takes ANY action, they had better have tons of documentation to justify it. So, other than the intimidation factor, are we at a stalemate?
http://www.pogowasright.org/?p=4936
Student Blogger Case Shows That Online Anonymity Isn’t Guaranteed
November 2, 2009 by Dissent Filed under Court, Internet, U.S., Youth
Butler University has dropped its libel lawsuit against a student that criticized university administration in an anonymous blog, but not before it was able to obtain the identity of the student. It will continue to pursue its own disciplinary proceedings against the student, junior Jess Zimmerman.
Dan Altman, Zimmerman’s lawyer, said that the university filed the lawsuit not because it believed that Zimmerman posted libelous information, but because it wanted to silence his criticism. He called the lawsuit an example of a strategic lawsuit against public participation (SLAPP), lawsuits that are designed to intimidate defendants that are critical of the plaintiff.
Read more on FindingDulcinea.com
If done properly, they should also record your conversation (with passengers and on the phone) as well as texting and listening to your GPS.
http://www.pogowasright.org/?p=4930
EU proposes black boxes for cars
November 1, 2009 by Dissent Filed under Non-U.S., Surveillance
David Millward reports:
Cars could be fitted with aircraft-style black boxes to help police allocate blame following a crash, under plans being considered in Brussels.
The European Commission has spent £2.4 million on Project Veronica, a study on how the boxes would work.
These boxes could be used to reconstruct what happened in the event of a commission which would make it easier for insurance companies to decide who was at fault and, where necessary, enable police to take action against the driver. [...]
These proposals are likely to trigger concern among civil liberties groups over the growth of the surveillance state. However such concerns have been dismissed in the Project Veronica report.
“Anonymised EDR data would be of very limited use in the judicial process and in that regard there is no obvious reason for which data privacy rights should supersede public order and crime investigation,” it notes. [Of course, it's not the anonymized data that concerns us. Can they tap the black boxes any time they choose, without warrants? Bob]
Read more in the Telegraph.
(Related) You would think someone had studied commuters. Is there a PhD dissertation waiting here?
Appeal For Commuter GPS Logs To Aid Electric Cars
Posted by timothy on Sunday November 01, @03:42PM from the where-did-you-go-this-summer dept.
holy_calamity writes
"A team at Carnegie Mellon University has begun a project seeking to design a kit to cheaply convert secondhand cars into cheap, electric ones suitable for commuting, if little else. They hope to rely heavily on smart management software to extract as much efficiency as possible from regenerative braking, and knowledge of terrain from GPS tracking. But they are hampered by a lack of public data on how commuters actually drive. Their solution is to appeal to GPS users to upload .gpx log files of their commute to the team's site. The data is plugged into a simulator that reveals how much cheaper an electric car could do your journey, and an anonymized public dataset will be created. A programming contest will award a production electric car to the coder who designs the best management algorithm using it."
Hardly the best platform for reading, but I guess you use what you have in hand.
For September, Book-Related Apps Overtook Games On iPhone
Posted by timothy on Monday November 02, @05:00AM from the fall's-good-contemplative-reading-weather dept.
ruphus13 writes
"In a sign that ebooks are rising in popularity, a recent survey by mobile analytics company Flurry revealed that users may be using the iPhone for more intellectual pursuits, and not just the visual sizzle. The 'book-related' apps on the iPhone overtook games in terms of new apps released. [I'll be impressed when the number of books read exceeds... well, anything else. Bob] According to the post, 'Book-related apps saw an upsurge in launches in September ... So much so that book-related applications overtook games in the App Store as a percentage of all released apps. The trend isn't an aberration. In October, one out of every five new applications launching on the iPhone was a book ... from August 2008 to the same month in 2009, more apps were released in the 'games' category than any other and, as a result, the iPhone (and iPod touch) became a new handheld gaming platform, one that impacted the Nintendo DS. '"
(Related) Balderdash! But I found it amusing...
http://www.bespacific.com/mt/archives/022701.html
November 01, 2009
Commentary on the Future of Reading
As the book changes form, the library must champion its own power base—readers, By Tom Peters: "The future of reading is very much in doubt. In this century, reading could soar to new heights or crash and burn. Some educators and librarians fear that sustained reading for learning, for work, and for pleasure may be slowly dying out as a widespread social practice."
[From the article:
At the other extreme, some people have developed a practice of rapidly skimming through long lists of bibliographic citations, dipping into the abstracts, references, tables, citations, and full text as their interest is piqued. We could call this type of reading skimmy-dipping, which wasn't even possible a quarter century ago. The recent launch of Google Fast Flip (fastflip.googlelabs.com) may make skimmy-dipping even easier and more respectable.
Another phone app. Integrating Google and the Cloud and your phone and your car. How distracting can that be?
http://www.businessinsider.com/googles-latest-disruptor-free-turn-by-turn-gps-maps-2009-10
Google's Latest Disruptor: Free Turn-By-Turn GPS Maps (GOOG)
Dan Frommer Oct. 28, 2009, 10:15 AM
… This is potentially bad news for GPS companies such as TomTom and Navigon and telcos like AT&T, which charge up to around $100 per year for this sort of service.
Here's a video from Google:
(Related) Could you be executed for talking to (not on) your phone?
http://www.bespacific.com/mt/archives/022710.html
November 01, 2009
UK Definitive Sentencing Guideline – Causing death by driving
Follow up to postings on driving distractions and texting, see the UK Definitive Sentencing Guideline – Causing death by driving which includes the following: "Using a hand-held mobile phone when driving is, in itself, an unlawful act; the fact that an offender was avoidably distracted by using a hand-held mobile phone when a causing death by driving offence was committed will always make an offence more serious. Reading or composing text messages over a period of time will be a gross avoidable distraction and is likely to result in an offence of causing death by dangerous driving being in a higher level of seriousness."
Related New York Times article: Britain Sets Tough Laws for Texting While Driving
How silly. (Does that make it more believable?) We want people to work at home so we're going to make it difficult or impossible for them to do so? Perhaps we shouldn't trust an article by someone who can't get the name of the government agency correct. (see gao.gov )
http://blogs.computerworld.com/15011/u_s_pandemic_options_include_crippling_home_modems
U.S. pandemic options include crippling home modems
October 30, 2009 - 11:32 A.M.
The U.S. has a dark box of options for keeping Internet traffic flowing during a pandemic, including restricting the bandwidth capability of home modems.
The feds have already shown their willingness to impose their power on carriers because of national security, something that happened after 9/11 with the Patriot Act. If a pandemic keeps large numbers of the workforce at home and causes network congestion, the U.S. government will likely act again.
Most businesses and government agencies have diverse routing and pay carriers handsomely for bandwidth rich connections. But if a pandemic keeps 30% or more of the population at home, the so-called low bandwidth "last mile" to homes will be critical but in trouble as legions of at-home employees attempt work along with those playing networked games and streaming video.
Voluntary appeals to reduce Internet use will likely be the first option for policy makers. But if that doesn't work, the U.S. General Accountability Office report this week on pandemic planning and networks, outlined some of the other possibilities.
One "technically feasible alternative," wrote the GAO, is to temporarily cripple home user modems:
Looks like an interesting project for my Computer Security class...
New Honeypot Mimics The Web Vulnerabilities Attackers Want To Exploit
New open-source Honeynet Project tool toys with attackers by dynamically emulating apps with the types of bugs they're looking for
Oct 29, 2009 | 03:53 PM By Kelly Jackson Higgins DarkReading
A next-generation Web server honeypot project is under way that poses as Web servers with thousands of vulnerabilities in order to gather firsthand data from real attacks targeting Websites.
Unlike other Web honeypots, the new open-source Glastopf tool dynamically emulates vulnerabilities attackers are looking for, so it's more realistic and can gather more detailed attack information, according to its developers. "Many attackers are checking the vulnerability of the application before they inject malicious code. My project is the first Web application honeypot with a working vulnerability emulator able to respond properly to attacker requests," says Lukas Rist, who created Glastopf.
Rist, a student, built Glastopf through the Google Summer of Code (Gsoc) 2009 program, where student developers write code for open-source projects. His Web honeypot was one of the Honeynet Project's Gsoc projects.
(Related) Anyone want to be a phone company?
http://linuxcrunch.com/content/skype-will-be-open-source
Skype will be Open Source
By Zayed Sun, 11/01/2009 - 14:37
These are always useful
http://www.bespacific.com/mt/archives/022704.html
November 01, 2009
New on LLRX.com - The Government Domain: A Handful of Classics
The Government Domain: A Handful of Classics - Peggy Garvin has updated her directory of useful government information resources online, the e-Government and Web Directory: U.S. Federal Government Online. Her research has found that federal web sites do not change as rapidly as users believe. The content on these sites is dynamic, constantly being refreshed and redesigned. However, the sites themselves, the ones that represent so much of the work of the federal government and are selected for inclusion in the book, are fairly stable.
This may be useful as we push students online for books, class schedules, research, math and writing labs, forums, testing, even snow closing announcements.
http://www.makeuseof.com/tag/design-your-own-online-portal-website-for-free-with-zooloo/
Design Your Own Online Portal Website for Free with Zooloo
Nov. 1st, 2009 By Mahendra Palsule
Zooloo provides you one place to create, connect and control your online life, including your own website, dashboard, widgets, blog, news, social networks, photos, and videos. While this may sound ambitious, Zooloo is geared towards inexperienced users who want a simple way to design their own website for free and engage in their favorite online activities.
No comments:
Post a Comment