Organizations are intimidated by global privacy and data security regulations

While companies generally are aware of and intimidated by global privacy and data security regulations, they fail to properly understand and address necessary organizational changes to comply. How is your company preparing for compliance with GDPR? A Ponemon Institute study, Data Protection Risks & Regulations in the Global Economy, asked more than 550 IT security and compliance professionals, involved with their companies’ global privacy and data security regulations, to weigh in on the top global … More Continue reading Organizations are intimidated by global privacy and data security regulations

Credit Card Breach at Buckle Stores

The Buckle Inc., a clothier that operates more than 450 stores in 44 U.S. states, disclosed Friday that its retail locations were hit by malicious software designed to steal customer credit card data. The disclosure came hours after KrebsOnSecurity contacted the company regarding reports from sources in the financial sector about a possible breach at the retailer. Continue reading Credit Card Breach at Buckle Stores

Are you making it easier for identity thieves?

News of data breaches and the risks of identity theft and fraud persist, but consumers’ vigilance and awareness haven’t kept pace. A national survey by Experian revealed that not only is America’s collective guard down, but people feel they are at a disadvantage when it comes to identity theft. Concerned about the threat and the hassle The survey makes clear that complexity, inconvenience and perceived odds of becoming an identity fraud victim have discouraged consumers … More Continue reading Are you making it easier for identity thieves?

From Stolen Wallet to ID Theft, Wrongful Arrest

It’s remarkable how quickly a stolen purse or wallet can morph into full-blow identity theft, and possibly even result in the victim’s wrongful arrest. All of the above was visited recently on a fellow infosec professional whose admitted lapse in physical security lead to a mistaken early morning arrest in front of his kids. Continue reading From Stolen Wallet to ID Theft, Wrongful Arrest

Seagate Phish Exposes All Employee W-2’s

Email scam artists last week tricked an employee at data storage giant Seagate Technology into giving away 2015 W-2 tax documents on all current and past employees, KrebsOnSecurity has learned. W-2 forms contain employee Social Security numbers, salaries and other personal data, and are highly prized by thieves involved in filing phony tax refund requests with the Internal Revenue Service (IRS) and the states. Continue reading Seagate Phish Exposes All Employee W-2’s