TalkTalk Lesson: Prepare for Breaches

Learning from the Telco's Mistakes Following Its Latest Hack. Source: BankInfoSecurity.com

Do you actually understand what insider risk really is?

The increasing focus on insider risk frequently overlooks the changing nature of our data, environments, and threat landscape. Source:CSOonline.com

Toy maker VTech says breach hit 6.4 million kids' accounts

Most affected accounts were in the U.S. Source: CIO.com

PHI Breaches: Not Just Healthcare Sector's Problem

Expert Provides Sneak Peek of New Verizon Report Findings. Source: DataBreachToday.com

FCC Fines Cox Over Breach Incident

Regulator Increasingly Cracks Down on Security Shortcomings. Source: BankInfoSecurity.com

What the JPMorgan Chase Breach Teaches Us

Chuck Easttom on Why Bigger Banks Are Especially Vulnerable. Source: BankInfoSecurity.com

Why Healthcare Data Encryption Should Be Considered

HealthITSecurity.com will review the basics of healthcare data encryption, and discuss some of the arguments for using this technological protection. Source: HealthITSecurity.com

Mental Health Facility Has PHI Data Breach of 11K Patients

A mental health facility in Texas recently reported a potential PHI data breach that may affect over 11,000 patients. Source: HealthITSecurity.com

Senate Passes Cybersecurity Info Sharing Bill

Several Privacy-Related Amendments Rejected. Source: BankInfoSecurity.com

Too many healthcare employees complacent about security

Non-technical health care employees are too complacent about the possibility of a data breach. Source: CSOonline.com

Businesses Lack Protection Against Mobile Data Breaches

Nearly three-quarters (74 percent) reported their organization has experienced a data breach as a result of a mobile security issue, the survey found. Source: eweek.com

Target converts to credit cards with PINs, not just signatures, for security reasons

Two years after its catastrophic data breach, Target has become the first major credit card issuer to convert to cards that contain a PIN. Source: Cleveland.com

Why CIOs should worry about the Internet of Things

The Internet of Things brings with it the promise gee-whiz applications and life-changing innovation. But one thing’s for sure – there are as many questions as there will be gigabytes of data being poured into your data centers. Source: CIO.com

New Android vulnerabilities put over a billion devices at risk of remote hacking

The flaws are located in Android's media processing components and can be exploited through maliciously crafted websites. Source:CIO.com

Thousands of medical devices are vulnerable to hacking, security researchers say

The security flaws put patients' health at risk. Source: CIO.com

HIPAA Enforcer Losing Patience on Encryption

OCR Officials Frustrated by Breaches Involving Lost, Stolen Devices. Source: DataBreachToday.com

New HIPAA Compliance Audit Details Revealed

OCR Director Provides an Update, Announces a HIPAA Settlement. Source: DataBreachToday.com

Top ten things you need to know about data breaches

OCR Director Provides an Update, Announces a HIPAA Settlement. Source: InformationAge.com

Five signs an employee plans to leave with your company’s data

A global high-tech manufacturer had reached its boiling point after several of its sales reps left the company unexpectedly and took with them sales leads and other data to their new employers. Source: CSOonline.com

How Secure Are We?

Continuous monitoring pays dividends as CISOs work to answer this difficult question. Source: CIO.com

DDoS Attacks Against Banks Increasing

Financial Institutions Seek New Ways to Mitigate the Risks. Source: DataBreachToday.com

Feds Charge 9 with $30M Insider Trading, Hacking Scheme

Hackers Allegedly Stole Press Releases from Major Newswires. Source: DataBreachToday.com

Why you should stop worrying about online privacy

Experts say the personal data we most commonly give up online promotes our privacy in other ways, but the kicker remains: Can we trust how that data will be used? Source: CSOonline.com

Majority of Providers Confident in HIPAA Compliance Policies

Even with recently large-scale health data breaches being announced, the majority of healthcare providers report that they are confident in their own HIPAA compliance policies. Source: HealthITSecurity.com

How higher education deals with security threats

A culture of openness, two-factor authentication and incident response plans are some ways colleges and universities are dealing with security threats. Source: CSOonline.com

Healthcare needs more IT security pros – stat

Technology is bringing amazing changes to the healthcare industry, but it’s also bringing the need for more IT security professionals. What’s causing this lack of talent and if you’re a security pro, how can you land a job in this growing field? Source: CSOonline.com

OPM's 2nd Breach: 21.5 Million Victims

Members of Congress Intensify Criticism of Agency. Source: DataBreachToday.com

The price of a data breach

Around $400 million were lost when 700 million private records from 70 organizations were exposed to hackers according to Verizon's 2015 Data Breach Investigations Report. Source: BusinessInsider.com

Unencrypted Device Breaches Persist

Health Data Breach Tally Shows String of Theft Incidents. Source: DataBreachToday.com

IT: Forget the device, secure the data

We delve deeper into a new trend: how information security professionals are moving toward practices that secure the data itself rather than securing the device. What are these practices and what are their strengths and pitfalls? Source: CSOonline.com

White House Calls For Encryption By Default On Federal Websites By Late 2016

Just 31% of federal agencies today host HTTPS websites and the Office of Management and Budget (OMB) has now given the rest of the government a deadline for doing so. Source: DarkReading.com

Is Healthcare Cloud Data Security Strong Enough?

 Not storing PHI in a physical location can definitely have its benefits, but if healthcare facilities fail to implement appropriate security measures, PHI could still fall into the wrong hands. Source: HealthITSecurity.com

Enterprise mobility slowed by security concerns

While mobile technology continues to move forward in all parts of the business, security issues threaten to slow the progress, according to attendees at this week's MobileIron's user conference. Source: CSOonline.com

IRS believes massive data theft originated in Russia

The Internal Revenue Service believes that a major cyber breach that allowed criminals to steal the tax returns of more than 100,000 people originated in Russia. Source: CNN.com

Beacon Health Is Latest Hacker Victim

Phishing Leads to Email Compromise, Exposing PHI. Source: DataBreachToday.com

PCI: 5 New Security Requirements

New Task Force Created to Assist Smaller Merchants. Source: DataBreachToday.com

Data breaches could cost the global economy trillions by 2019

Juniper Research has concluded that data breaches could cost the global economy as much as $2 trillion in the next five years. Source: DigitalJournal.com

Unencrypted Devices Still a Breach Headache

The Ongoing Risk Posed by Lost, Stolen Mobile Devices. Source: DataBreachToday.com

Starbucks still grappling with fraud in online accounts, gift cards

Starbucks is still grappling with fraud involving its customers' online accounts and gift cards, with some victims seeing hundreds of dollars stolen. Source: CSOOnline.com

2015 Verizon Data Breach Report: 9 Basic Patterns Cause Most Security Incidents

Verizon released its 2015 Data Breach Investigations Report, which found that, while cybercriminals are using increasingly sophisticated means in their attacks, security breaches are precipitated in nine basic ways. Source: BSMInfo.com

Is Healthcare Improving Data Breach Prevention Measures?

Recent reports show that even though healthcare might be concerned with its data security and data breach prevention measures, it might not always have the necessary tools available. Source: HealthITSecurity.com

About 25K people impacted in Saint Agnes Health Care breach

Maryland-based Saint Agnes Health Care is notifying approximately 25,000 individuals that their personal information was compromised by attackers. Source: SCMagazine.com

Health Data Breaches Accounted for 37% of all 2014 Incidents

According to a recent report, the healthcare industry accounted for just over one-third of all data breaches in 2014. Source: HealthITSecurity.com

Data Breaches, Hacks And Phishing Attacks Aren't Slowing Down, Verizon Report Warns

The biggest network threat in today's enterprise is likely sitting at a desk within the enterprise. Source: TechTimes.com

Target, Mastercard in talks over $20 million data-breach settlement

Target Corp. and MasterCard Inc. are close to a deal to reimburse banks and other financial institutions for millions of dollars in costs following the retailer's 2013 data breach. Source: BizJournals.com

5 Breach Lawsuits Filed Against Premera

Meanwhile, Health Insurer Provides Answers to Congress. Source: BankInfoSecurity.com

PCI Issues Penetration Test Guidance

Experts Debate Whether Advice Goes Far Enough. Source: DataBreachToday.com

Data breach may have exposed Bradley employees personal information

University officials say the breach could have resulted in the release of the personal information of current employees and their family members. Source: CINewsNow.com

Verizon: Breaches Under-Reported Globally

New Report Finds Maintaining PCI Compliance a Challenge. Source: BankInfoSecurity.com

New Data Breach Security Bill Faces Early Criticism

The Subcommittee on Commerce, Manufacturing, and Trade will meet tomorrow to discuss the details of the recently announced data breach security bill. Source: HealthITSecurity.com

Gartner: Digital Risk Officers on Rise

Teaming with CISOs to Address New Risks. Source: BankInfoSecurity.com

Anthem Hit by Massive Data Breach

As Many as 80 Million Could Be at Risk of Identity Fraud. Source: BankInfoSecurity.com

US government forming cybersecurity agency to combat online threats

The Obama Administration will create a new agency to monitor cybersecurity threats and share data about possible attacks among government departments. Source: CSOonline.com

N.Y. to Launch Cyber Exams for Insurers

Announcement of Assessments Follows Anthem Breach. Source:DataBreachToday.com

5 things you can do to limit your exposure to insider threats

CoSoSys compiled a list of five things companies should do to minimize the risk from insider threats—or external hackers who successfully infiltrate the network by impersonating an authorized insider. Source: CSOOnline.com

Endpoint security trends for 2015: What can we expect?

Businesses will often allow BYOD (bring your own device), thinking that it'll increase productivity and save them money by not having to purchase mobile devices for their employees.But BYOD introduces a multitude of security problems to corporate networks. Source: CSOOnline.com

USA: Congress hearing highlights data breach law as 'top priority'

The US Congress held a hearing, on 27 January 2015 to determine the elements that should be included in a data breach federal legislation. Source: DataGuidance.com

Why criminals pick on small business

Small and midsized businesses are now the preferred targets for cybercriminals – not because they are lucrative prizes individually but because automation makes it easy to attack them by the thousands, and far too many of them are easy targets. Source: BankInfoSecurity.com

Park 'N Fly Confirms Data Breach

Payment Card Information Exposed. Source: BankInfoSecurity.com

U.S. Central Command's Accounts Hacked

ISIS Sympathizers Reportedly Post Warnings, Leak Documents. Source: BankInfoSecurity.com