pii

(get it in RSS or Atom)

SSCC 132 - More breaches, treacherous gas pumps, poor passwords and Data Privacy Day [PODCAST]

sscc-132-thumb-250

This week's Chet Chat starts out with credit card breaches, covers the issue of whether you really need good passwords everywhere, and ends with an upbeat and encouraging conclusion...

Listen and learn more!

Target's data breach MUCH bigger than first thought - now more than 100,000,000 records

target-shot-250

US megaretailer Target is having a tough time of it.

Having said that, so are its customers - and even, as it now turns out, many of its non-customers, too.

Target has now joined companies like Adobe and Sony in the "hundred million plus" data breach club...

SSCC 121 - WordPress, OS X, iCloud, smartphone tracking and medical devices [PODCAST]

sscc-121-thumb-250

By popular demand, the Chet Chat has gone back to a weekly format, so your favourite security podcast will now be appearing twice as frequently!

Listen to Chet and Duck in the latest episode...

2 years in federal prison for trash-searching student aid fraudster

bars-250

A Florida man will go to prison for defrauding student aid accounts, while his two fellow-conspirators have been given probation and community sentences.

The group's techniques should serve as a reminder that it's not just the information stored on our computers that we need to keep secure.

Copying fingerprints, Firefox trusted, Facebook not, Yahoo recycles - 60 Sec Security [VIDEO]

2013-09-28-60ss-thumb-250

How do you copy fingerprints? Which is the most trustworthy browser? Who will use Facebook for payments? How long does an email address live?

Satisfy your curiosity with this week's 60 Second Security!

US health care company faces giant class action suit for losing over 4,000,000 unencrypted records

nicked-lappie-500

To paraphrase Oscar Wilde: "To lose one patient record may be regarded as a misfortune. To lose 4,000,000 looks like carelessness."

How four stolen computers led to a huge class action lawsuit...

RSPCA has access to confidential police data and no one is checking what it does with it

RSPCA has access to confidential police data and no one is checking what it does with it

UK police routinely pass on personal information they hold, including central criminal records and huge swathes of material held by local forces, to the RSPCA - a non-government body with no official requirement to reveal who it holds data about, what data it holds, how it stores it or for how long.

Apple finally adopts HTTPS for the App Store - here's why it matters

Last year, a Googler named Dr. Elie Bursztein noticed that Apple's App Store protocols were using HTTP where HTTPS would have been much better.

Some time later, Apple has changed its ways.

Paul Ducklin explains why it matters...

Webhosting management company cPanel suffers break-in, lets slip customers' root passwords

cpanel-demo-250

Webhosting management company cPanel recently announced a worrying sort of compromise: the possible theft of its customers' root passwords.

Paul Ducklin looks at what happened, and what's being done to avoid a repeat of this worrying situation...

Indian two-factor authentication fraudsters busted by Delhi cops

Two more alleged cybercrooks are cooling their heels in custody this weekend.

The modern-day bank robbers are said to have run a scam that allowed them to work around the two-factor authentication protection offered by the victims' banks.

US Secret Service probed after sensitive files left on Metro train

US Secret Service probed after sensitive files left on Metro train

A contractor working for the US Secret Service left two tapes full of extremely sensitive data on a Metro train, losing the extremely sensitive, personal data of staff, contact and overseas informants.

NASA suffers major data breach over stolen laptop that wasn't encrypted

NASA suffers major data breach over stolen laptop that wasn't encrypted

The space agency is now, finally, after yet another unencrypted laptop theft, scrambling to require full disk encryption agency-wide.

Should you lie on Facebook? [VIDEO]

Should you lie on Facebook? [VIDEO]

A senior government official has advised users of social networks such as Facebook on how to better protect their privacy.

Don't tell social networks the truth.

FTC files complaint against Wyndham Hotels for not protecting sensitive customer information

FTC files complaint against Wyndham Hotels for not protecting sensitive customer information

Wyndham Hotels is being sued by the US Federal Trade Commission for lax security measures. Will suits like this raise concerns among other organizations that are careless with our personal information?

TechRadar latest site to have usernames and passwords stolen

TechRadar latest site to have usernames and passwords stolen

Tech news site TechRadar is alerting users that their username, password, email address and date of birth have been accessed by hackers.

Lost USB keys back in the spotlight in Privacy Commission report

Lost USB keys back in the spotlight in Privacy Commission report

In late 2011, we published our analysis of a bunch of USB keys we'd bought at a lost property auction.

We got a number of surprises - not least that the Privacy Commissioner decided he wanted a word with us. Find out what happened next...

FTC puts Myspace on the naughty step for selling users' private information

naughty250

Myspace settles charges with The FTC for sharing the private information and web browsing habits of its 25 million users with advertisers. Do you think it's enough of a slap on the wrist?

SSCC 86 - online elections, "total internet disconnection", Facebook/privacy and PII for just 3c

SSCC 86 - on-line elections, "total internet disconnection", Facebook/privacy and PII for just 3c

In this week's episode, Paul Ducklin joins Chet to discuss online elections, "total internet disconnection", Facebook's new take on privacy, and PII at just 3c a hit.

As usual, Chet and Duck express strong opinions, with Duck even calling on those who are concerned about the erosion of online privacy "not to go quietly"...

Corrupt call center workers selling your private information for pennies

Corrupt call center workers selling your private information for pennies

An undercover investigation in India has uncovered that some call center workers have been selling confidential information on nearly 500,000 Britons.