Conference Call Systems and Security
I found a very interesting article talking about the security surrounding conference call systems, and the ease there is with some systems to allow you to eavesdrop in on calls. Your competitors are simply dialing into insecure conference call lines…
Ontario Cancer Screening Records Go Missing
Ontario’s Privacy Commissioner is looking into reports that the whereabouts for up to 15 screening activity reports is unknown. These reports contain the Personal Health Information (PHI) of up to 6,490 Ontarians. The Privacy Commissioner’s office is still investigating the…
Indian users of Groupon subsidiary face password breach
An Australian security consultant, Daniel Grzelak, discovered an SQL file with over 300,000 usernames and plain text passwords from Sosasta.com by conducting a Google search. The entire user database of Groupon’s Indian subsidiary Sosasta.com was accidentally published to the Internet and indexed…
Bioware Account Breach
I got an email the other day, one I wasn’t expecting to receive, because I wasn’t even aware that the organization had a data breach. (But then, how could I? They’ve been coming fast and furious for a while now.)…
Is speed a good thing in disclosing security breaches?
How quickly do you feel a company should notify you that your personal data has been exposed as the result of a security breach? There have been a number of high profile data breaches recently, such as Sony, Epsilon and…
Security Review – 6/7/2011
Similar to a number of other breaches (Sony, Epsilon, Lockheed-Martin), hackers seem to mostly be targeting the ‘larger’ targets, that will bring a lot of public exposure. The Conservative Party of Canada site was the target of such an attack this…
Sharing: OSF DataLossDB
I just wanted to share a site that I refer to frequently, the DataLossDB from the Open Security Foundation. They track both Incidents and Fringe Incidents relating to the loss of data by an organization. I got thinking about it…
