security incident

Using SIM tools to protect your networks

Thu, 19 Apr 2007 20:01:36 -0400

Finding problems in network logs is a great way to monitor network activity, but it's next to impossible in large corporations that are capturing as many as 50,000 logged events per second. SIM (Security Incident Management) technologies can help. Many consist of software that gathers logs throughout the network and sends them first to a collection point, then on to a correlation engine, where the data is analyzed. The results are then sent on to a console so that IT managers can assess any potential or actual threats that have been found. This can be a very effective way of collecting log information from a wide variety of sources. The technology is also used by many larger companies to prove they are complying with regulations. SIM systems, from vendors like ArcSight, Network Intelligence, netForensics and eIQnetworks, range from $15,000 to $200,000.

Learn more about SIM systems:
- read the article at TechTarget

Merging physical security and IT security

Tue, 06 Feb 2007 19:01:38 -0500

The convergence between physical security and IT security, which began in earnest last year, is crucial to enabling organizations to fully protect their data and networks during security attacks. On the physical security front, important technologies include video surveillance, IP video technologies and alarm technologies, all of which can communicate in real time to provide up-to-the-minute information. The challenge is in managing, correlating and analyzing all of this physical security in an IT framework, in order to drive correct decisions. This can be a complex process often requiring outside assistance, but new technology, such as Security Event Management (SEM) and Security Incident Management (SIM) can help.

Learn more about what it takes to merge IT and physical security:
- read the article at TechNewsWorld

Network breach puts retailer data in jeopardy

Thu, 18 Jan 2007 19:01:39 -0500

The latest computing security breach has taken place at a brand name retailer, putting confidential financial data at risk. The TJX Companies reported an unauthorized intrusion into its networks that process and and house data tied to credit card details and customer transactions. The company is vowing to determine who is responsible for the breach that impacts computers at its various retail store outlets in Canada, the U.S. and Puerto Rico. In a released statement TJX said it may be possible that the network break-in also provided access to systems in the U.K. and Ireland.

For more on the retail security incident:
- read the news at NetworkWorld

Starbucks laptops go missing

Mon, 06 Nov 2006 19:01:39 -0500

Well, it's been at least a few weeks since the last laptop security incident, so it's about time: The Starbucks corporation has lost four portable computers housing confidential data on current and former U.S.-based employees. The data includes social security numbers, addresses and names. It seems that the laptops actually went missing from a closet back in September and the coffee vendor held off on public disclosure while it reached out to workers in an effort to recover the laptops. The company says that there's no indication the data has been used maliciously.

For more on the latest laptop incident:
- read the news at BPM Today

Federal agencies get new data security mandate

Thu, 13 Jul 2006 20:01:38 -0400

In the strongest directive yet at getting a grip on data security, the Office of Management and Budget (OMB) has stipulated that all federal agencies report a data breach or data security incident related to personal identification information within one hour of the event. Up until now, agencies knew they had to report such incidents, but various time frames were stipulated by the Federal Information Security Management Act of 2002. Even if the breach or theft isn't yet confirmed, the agencies must notify the OMB. Skeptics still think that agencies will not be reporting everything.

For more on the new federal data security mandate:
- check out this article at Government Computer News

PLUS: In the private sector, data theft is a big financial headache. Article

State Department investigating computer breach

Tue, 11 Jul 2006 20:01:37 -0400

While it won't provide specifics on its investigation or the actual security incident that has taken place, the State Department is trying to figure out what exactly happened during big break-ins with its computers housing data and information related to work with China and North Korea. The agency detected what it's calling "anomalies" in its network traffic and said it launched its cyber security response immediately after the computer incidents.

For more on the computer break-ins:
- read this article at CNet News.com

VA puts security tasks in the right hands

Sun, 02 Jul 2006 20:01:38 -0400

One of the big issues that led to the recent security incident at the Department of Veterans Affairs was that security management and oversight was fragmented and not really any one person's domain. That's exactly why the VA is now pushing authority of security policies, programs and processes directly into the agency's CIO's hands. It's a huge administrative step that should help secure technology efforts going ahead as such responsibility used to require the sign-off from several administrative leaders within the agency. It's the department's first step toward centralizing its fractured tech organization.

For more the tech revamp at the Veterans agency:
- read this article at Government Computer News

Navy employee data posted on public site

Sun, 25 Jun 2006 20:01:39 -0400

The latest data security breach involves confidential data of nearly 30,000 Naval personnel and family members posted on a public Web site. The data included names, social security information and birthdates. The Navy isn't talking during its investigation of how the data ended up where it did. But, like every other government agency that's experienced a security incident, it said the information has not yet been used for illegal purposes and is offering credit-monitoring services to those whose information was posted publicly.

For more on the latest government data incident:
- read this article at USA Today

Email snafu puts client addresses in public domain

Wed, 14 Jun 2006 20:01:39 -0400

While the news item below indicates that internal security issues aren't looming as large as many believe, it's still pretty clear that internal snafus can become huge financial and corporate headaches. Database vendor MySQL AB is feeling that pain right now after a staffer accidentally emailed nearly 10,000 customer email addresses into the text of an email instead of the "blind carbon copy" input on the form. While the company is scrambling to apologize to clients, it's also working on policy and a new process to make sure such an email security incident doesn't happen again.

For more on the email snafu:
- read this article at Computerworld

AICPA reports laptop data loss

Wed, 07 Jun 2006 20:01:39 -0400

The latest serious data loss of confidential information has been reported by the American Institute of Certified Public Accountants (AICPA). The hard drive of a damaged laptop sent out for repair, which contained the organization's membership information including social security numbers for 330,000 people, has not safely returned to the hands of the group. FedEx says it's not sure what happened to the shipment, which was sent in February, and says it is considered "missing" and not stolen at this point. Meanwhile, the AICPA began contacting members at the end of March once it learned what data was on the missing laptop.

For more on the latest data security incident:
- read this Computerworld article