SecurityRatty: tag: mistake

Personal information of 103,000 doctors from 11 states posted to web site

2008-03-03 09:19:48 by Evan Francen in The Breach Blog

...mistake was attributed to human error and software problems Evan] Both Health Net Federal Services is now paying for a year's worth of credit monitoring for the doctors involved, and is not aware of any circumstances where the personal information of any doctor has been obtained or used illegally Evan] Monitoring for one year, Social...

Tags: personal information, sensitive personal information, information, providers personal information, doctors, health net, health net employees, 103-thousand doctors, social security

Mashup of the Titans

2008-06-25 17:29:25 by Gunnar Peterson in 1 Raindrop

...mistake in a mechanism that gives explicit permission tends to fail by refusing permission, a safe situation, since it will be quickly detected. On the other hand, a design or implementation mistake in a mechanism that explicitly excludes access tends to fail by allowing access, a failure which may go unnoticed in normal use. This principle...

Tags: protection mechanisms, protection mechanisms correctly, information security, information, implements protection mechanisms, information travels, information security people, protection, potential information path

This is not a bodyguard - this is a walking lawsuit.

2008-03-18 02:52:00 by John Sexton in The Bullet Proof Blog

...mistake by assaulting and battering the photographer in question, but he left her totally unprotected when he jumped out of the vehicle in a rage What would he have done if this were a trap? If someone wished to harm Ms. Kidman, or kidnap her, they could have staged this. The 'photographer' could have merely been bait used to lure her...

Tags: hire, celebrities hire amateurs, security, security person, vehicle, company vehicle, people hire, professional security firms, night club bouncer

The Checklist

2008-02-07 20:14:00 by Security Retentive in Security Retentive

...mistake, a huge mistake. And from a taxpayers perspective its outrageous. We have a thirty-billion-dollar-a-year National Institutes of Health, he pointed out, which has been a remarkable powerhouse of discovery. But we have no billion-dollar National Institute of Health Care Delivery studying how best to incorporate those discoveries into...

Tags: secure, develop secure software, software, software development organizations, health, health care delivery, security, checklist, software development world

Apologies and Data Breaches

2007-10-08 20:51:00 by Security Retentive in Security Retentive

...mistake, but because of how they are treated. Being upfront and honest with the patient about the mistake, and apologizing, seems to have a positive impact Makes me wonder if there is a lesson in here for companies that have data breaches. Maybe getting out front of the issue like TD Ameritrade (not really out front given how long it was...

Tags: npr piece, npr piece details, data breaches, class action suits, patients sue, patients, hospital apologies, hospital, major press

SDL Training

2008-05-29 15:22:00 by sdl in The Security Development Lifecycle

...mistake is training, but you see that same thinking applied to code scanning, security response, and just about every phase of the SDL. Lets just train everyone, and all our security problems will go away . If only it were so easy. Id like to take a few minutes to try to explain why its not really that easy from my own experience Have you...

Tags: real behavior change, behavior, sdl, change peoples behavior, security, security guy, security defects, defects, security class

2.2 million billing records missing on stolen backup tape

2008-06-11 12:33:06 by Evan Francen in The Breach Blog

...mistake that he almost certainly regrets, but the University of Utah Hospitals & Clinics is the custodian of this information that should have identified the risks involved with transporting confidential patient records off-site. One of those risks is the possibility that a backup tape may become lost of stolen, which is obviously the case in...

Tags: tape, backup tape, backup, information, personal information, backup information tapes, million, utah, million people live

Simple oversight at TNS Infratest exposes participant information

2008-07-09 23:37:10 by Evan Francen in The Breach Blog

...mistake too common. The vulnerability is very easy to find by good pen testers and the bad guys. Actually, I am surprised that we don't hear about more of these types of breaches Besides name and address, the data records included date of birth, email address and phone number Many records also included very sensitive information: monthly...

Tags: information, records, master data records, sensitive information, sensitive, information leaks, personal information, data, bank account information

Houston law firm threw confidential client information in the trash

2008-07-17 14:59:25 by Evan Francen in The Breach Blog

...mistake," he said. "We regret it. We regret it. They weren't intended to be put here. I didn't put them here. It was a misunderstanding between me and my wife Evan] Ugh. Blaming the wife would not be a good idea in my house, even if it were my her fault He added it was a one-time problem But he also said his firm does not have a policy for...

Tags: houston, weber, weber wishes, houston attorney, bankruptcy, khou-tv news, news, bankruptcy files, william weber

Facebook backs down on Beacon program

2007-12-11 11:09:46 by Jen Albornoz Mulligan in Security & Risk Management

...mistake (see above article). As more companies try new forays into online marketing, I expect to see more of these privacy insensitive developments. How can you prevent your organization from making such a blunder? Privacy impact assessments. All new business projects and plans that use or collect data in a new way should be reviewed with an...

Tags: privacy, privacy impact assessments, program, facebook, beacon program, privacy insensitive developments, business projects, projects, privacy news

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo