SecurityRatty: tag: tjx

A top-down approach to Risk & Compliance Management could have saved TJX some serious money

2007-12-05 13:29:00 by Ryan Shopp in practical risk management

...TJX some serious money by: Ryan Shopp Everyone, including me, keeps reading about the TJX data breach. Here are some prime snippets from a few recent articles I've read Industry analysts have estimated the total costs to TJX from $500 million to as much as $1 billion, when legal settlements and loss of market share and sales are included ...

Tags: tjx, saved tjx, tjx data breach, approach, top-down approach, tjx report, top-down, tjx breach, information security

TJX Lessons

2008-01-22 14:11:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...TJX lessons one year later . Highlights Breach disclosures don't always affect revenue or stock prices ... Despite being the biggest, costliest and perhaps most written-about breach ever, customer and investor confidence in TJX has remained largely unshaken TJX has said that in the 12 months since the breach was disclosed, it has spent or...

Tags: tjx lessons, tjx, breach, breach disclosures, written-about breach, security controls, affect revenue, set, stock prices

TJX - Who suffers?

2007-10-26 08:12:00 by Allen Baranov, CISSP in Security Thoughts

...TJX has suffered a text book case hack attempt and so all the Security Chicken Littles were salivating because this would be the "I told you so" opportunity of a lifetime And it didn't happen. I blogged about it here and here So, what happened? My personal feeling is that this was just the first punch in the fight. Consumers have taken the...

Tags: tjx, bit, bit harder, impact tjx, suffers, process, credit card process, credit cards, consumers start

FTC settles with TJX, LexisNexis

2008-03-28 00:00:00 by Grant Gross in Network World on Security

The U.S. Federal Trade Commission has settled data-breach complaints against retailer TJX and data broker Reed Elsevier, requiring both companies to establish comprehensive information security programs and submit to biennial data security audits over the next 20 years

Tags: federal trade commission, data-breach complaints, retailer tjx, submit, companies

FTC settles with TJX, LexisNexis

2008-03-28 13:00:00 by Editor in Computerworld Security News

The FTC has settled data breach complaints against TJX and LexisNexis, ordering the two companies to set up comprehensive information security programs and submit to biennial data security audits for the next 20 years

Tags: data breach complaints, tjx, lexisnexis, ftc, submit, companies, set

TJX staffer sacked after talking about security problems

2008-05-23 00:00:00 by Robert McMillan in Network World on Security

A low-level TJX employee has lost his job for speaking in public about information security problems he uncovered while working for the company

Tags: low-level tjx employee, information security, public, company, job, lost

TJX staffer sacked after talking about security problems

2008-05-27 10:23:35 by Editor in Computerworld Security News

He says he tried to work through official channels, but after getting no satisfaction and turning to the blogosphere, a young security researcher has been fired from his TJX day job for blabbing about new troubles at the famously breached store chain

Tags: tjx day job, official channels, security researcher, store chain, troubles, fired, blogosphere, famously, satisfaction

When do you have an obligation to go public?

2008-05-29 21:13:01 by HASH0x8b01008 in StillSecure, After All These Years

...TJX for disclosing in a public forum continued poor security practices by TJX. The same TJX I might add that as a result of slipshod security practices caused 100s of thousands of dollars, if not millions of dollars in bank fraud to occur Many have categorized CrYpTiC MauleR, the employee who disclosed the information on hackers.org, as a...

Tags: public, public forum, tjx, tjx fraud, martin, cryptic, confidential information, cryptic mauler, ipo public

Again, On Criticality of Logs

2007-12-07 08:32:00 by Dr Anton Chuvakin in Anton Chuvakin Blog -

...TJX case , which kinda follows the same idea: ' Dr. Anton Chuvakin , a security expert with LogLogic , said TJX didn't have decent logs. "What took TJX months was looking at all their systems and determining who took what data, from where, where it was sent, etc. The investigation took them months. They likely didn't have any logs, because...

Tags: logs, reliable logs, collect logs, decent logs, security, tjx, security managers, tjx months, log data

Your name:
Your email:
Describe a problem:
AntiSPAM Validation:

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo

	Favorites
	My AOL
	My Ask Jeeves
	Blinklist
	Blogmarks
	Del.icio.us
	Digg
	Facebook
	Faves
	Furl
	Google
	Live
	Magnolia
	Netvouz
	Slashdot
	Spurl
	Technorati
	Yahoo