Data breach – РИСК-АКАДЕМИЯ – АНО ДПО ИСАР https://risk-academy.ru Управление рисками, риск менеджмент, обучение по управлению рисками, тренинг риск менеджмент Sun, 11 Oct 2020 08:15:00 +0000 en-US hourly 1 https://wordpress.org/?v=6.9.4 https://raruswebsite.s3.amazonaws.com/wp-content/uploads/2018/02/10213225/cropped-favicon-32x32.png Data breach – РИСК-АКАДЕМИЯ – АНО ДПО ИСАР https://risk-academy.ru 32 32 Unions NSW warns of serious data breach risk, calls for “cyber cops” https://risk-academy.ru/unions-nsw-warns-of-serious-data-breach-risk-calls-for-cyber-cops/ Sat, 10 Oct 2020 22:50:09 +0000 https://risk-academy.ru/unions-nsw-warns-of-serious-data-breach-risk-calls-for-cyber-cops/
Significant resources are needed to patch security holes in the NSW Government’s data management systems, a union has warned.
Significant resources are needed to patch security holes in the NSW Government’s data management systems, a union has warned.

Significant resources including “cyber cops” are needed to patch security holes in the NSW Government’s data management systems, a union has warned.

A cyber attack against Services NSW which compromised 180,000 residents’ personal information in April has prompted Unions NSW to call for changes in how data is handled.

The union will demand more cyber security experts and greater transparency into any data breaches, in a submission expected to be handed to a state inquiry on cybersecurity on Monday.

Read Next

“Various agencies within the NSW Government hold significant data about citizens, most notably in respect of our health, education, qualifications, assets and finances and this information has quickly become a valuable resource,” the organisation writes in the submission, seen by NCA NewsWire.

Unions NSW secretary Mark Morey compared the increasing value of personal data to an oil boom, saying in a statement he sees a risk that information about public sector workers could end up being treated like a commodity. He also warned the security…

Read More…

]]> Good news about data breaches https://risk-academy.ru/good-news-about-data-breaches/ Sun, 30 Aug 2020 17:48:01 +0000 https://risk-academy.ru/good-news-about-data-breaches/

Protiviti has shared a useful summary of the latest Verizon Data Breach Investigations Report (DBIR), which is available from Verizon here.

The good news was put well by Protiviti:

One of the surprises in this year’s report is that organizations are discovering 60 percent of data breaches in days or less and containing 80 percent of breaches in the same timeframe.

As Protiviti says:

Verizon highlights that this is due to more breaches being detected by managed security providers, and not necessarily an improvement of internal detection and containment capabilities.

The Verizon report has a wealth of detail but it is awkward to navigate. So I suggest reading the Protiviti summary first.

One of the Verizon points which is of tremendous importance, although it is hidden in the middle of the Results and Analysis section[1], is this:

Last year, we looked at the median impact cost for incidents reported to the FBI IC3. With regard to business email compromises (BEC), we noticed that most companies either lost $1,240 or $44,000 with the latter being slightly more frequent (Figure 32).

Also, last year we stated that when “the IC3 Recovery Asset Team acts upon BECs, and works with the destination bank, half of all U.S.-based business email compromise victims had 99% of the money recovered or frozen; and…

Подробнее…

]]>