Govt Information Security: A Contradiction in Terms?
Govt Information Security: A Contradiction in Terms?
In looking returning at the most severe data protection breaches of 2012, the one factor that is unique most is the popularity of US government organizations at every level, condition, local and Federal. The second factor that is unique is the number of major breaches including healthcare care and healthcare information.
This is particularly befuddling as we begin the full carried execution of ObamaCare and with the continuous government effort to scan permanent healthcare record.
Of course, the quick entry to a person's individual record could have tremendous benefits. Clearly, if you are brought subconscious into an hospital you would want the doctors and staff to know everything about your record, what you are hypersensitive to, what medicines you are on, etc.
Those of us in technology wonder what has taken the healthcare industry to get with the pc age, but the truth is that it will raise tremendous comfort concerns and the potential for great misuse.
I know from individual expertise. Six years ago, I was in a very bad car accident and experienced a severe concussion. For a brief time, less than a month, I was handled with a treatment that can improve performance. It is also used to treat Alzheimer's and dementia.
Sometime later, I applied for insurance coverage coverage and discovered that I was needed to sign an acceptance for the plan provider to accessibility a new database program that contains combined drug information.
Well, it turned out that having taken this treatment, no issue for how short some some time to for regardless of what reason, made me ineligible to obtain insurance coverage coverage.
Gee, I wish I had known that before I decided to take it!
I've drawn from my record of most severe data breaches for 2012 the occurrences that engaged government, healthcare information or both. It is the majority of the top 10 list!
Compromise of White-colored Home E-mail System
Employees of the White-colored Home Army Workplace were sufferers of a "Spear Phishing" attack, tracked returning to China excellent. Although all reviews stress that personal information was not affected, the point that the Army Workplace is in charge of the President's schedule and the codes to release atomic missiles is so escalating that I have to include this on my record.
NASA Halloween Laptop computer Theft
Like the White-colored Home email bargain, the exposure of 10,000 NASA worker information makes the record for reasons other than the actual size of the violation. The proven reality that data from private background record assessments on thousands of workers could be duplicated unencrypted to a laptop which is then thieved from an revealed car is jaw losing.
US Fast and Birthplace Security Hacked
In July a cyberpunk arranged named Electronic Crime breached directories at the US Fast and Birthplace Security using SQL hypodermic injection strikes, revealing the employees information of 200,000 Fast workers. They thrown out the thieved personal information, such as user names and security passwords onto sub areas managed by these divisions. On the pros, the team's purpose was to reveal the weeknesses and to humiliate the federal government, not to use the bargain data for dubious requirements.
Emory Healthcare Patient Records Lost
In Apr, Emory Healthcare revealed that 315,000 individual unencrypted information were losing. This occurrence varies from others on this record in that it did not include a network violation. 10 laptop or computer drives from an outdated pc were discovered to be losing from a storage facility. The drives included highly delicate surgical individual data, such as public protection figures, gathered over 17 season period.
Securing data can be costly, but a $200 thousand class action court action lawsuit awaiting against Emory Healthcare demonstrates the cost of inaction.
Utah State medicaid programs Statements Records Stolen
In Apr, the The state of utah Division of Technical Services revealed that 780,000 State medicaid programs individual claims information were thieved by a cyberpunk operating out of Southern European countries. The violation was held responsible on a misconfigured test hosting server implemented with a poor password.
State of Southern Carolina Information Breaches
Note that the headline here represents "breaches", dual.
Partly to leave space on my record for an extra deserving newcomers and partially to emphasize the extreme learning bend of the municipal servants in the Palmetto condition, I am mixing what has been called the "mother of all data breaches" with a smaller but greatly significant violation earlier in the season.
In Apr we discovered that a former condition worker had thieved 228,000 State medicaid programs participants' personal information information. He was captured delivering the information by email!
The violation was a simple prelude to perhaps the greatest data violation of all-time.
From Aug to mid Oct 3.6 thousand Social Security figures and 400,000 bank card figures were thieved from the Southern Carolina Division of Revenue. All but 16,000 of the bank cards were secured, but all of the Social Security figures were revealed.
In a unusual perspective to the story, the administration in Southern Carolina revealed that they are engaged in a "sting operation" that is attempting the restore the information by paying black mail.
That increases a few questions. Why openly talk about a pain function still in progress? What good is it to restore thieved data in digital age when it can easily be duplicated?
The most question of all may be how in the world could they have left so personal information unencrypted? Oh, they came up with an answer. Seems it was not needed by law so they realized it was OK.
Let's hope 2013 is a better season and that the abilities that be in both the public and private areas place the priority and emergency on data protection that it should get.
In looking returning at the most severe data protection breaches of 2012, the one factor that is unique most is the popularity of US government organizations at every level, condition, local and Federal. The second factor that is unique is the number of major breaches including healthcare care and healthcare information.
This is particularly befuddling as we begin the full carried execution of ObamaCare and with the continuous government effort to scan permanent healthcare record.
Of course, the quick entry to a person's individual record could have tremendous benefits. Clearly, if you are brought subconscious into an hospital you would want the doctors and staff to know everything about your record, what you are hypersensitive to, what medicines you are on, etc.
Those of us in technology wonder what has taken the healthcare industry to get with the pc age, but the truth is that it will raise tremendous comfort concerns and the potential for great misuse.
I know from individual expertise. Six years ago, I was in a very bad car accident and experienced a severe concussion. For a brief time, less than a month, I was handled with a treatment that can improve performance. It is also used to treat Alzheimer's and dementia.
Sometime later, I applied for insurance coverage coverage and discovered that I was needed to sign an acceptance for the plan provider to accessibility a new database program that contains combined drug information.
Well, it turned out that having taken this treatment, no issue for how short some some time to for regardless of what reason, made me ineligible to obtain insurance coverage coverage.
Gee, I wish I had known that before I decided to take it!
I've drawn from my record of most severe data breaches for 2012 the occurrences that engaged government, healthcare information or both. It is the majority of the top 10 list!
Compromise of White-colored Home E-mail System
Employees of the White-colored Home Army Workplace were sufferers of a "Spear Phishing" attack, tracked returning to China excellent. Although all reviews stress that personal information was not affected, the point that the Army Workplace is in charge of the President's schedule and the codes to release atomic missiles is so escalating that I have to include this on my record.
NASA Halloween Laptop computer Theft
Like the White-colored Home email bargain, the exposure of 10,000 NASA worker information makes the record for reasons other than the actual size of the violation. The proven reality that data from private background record assessments on thousands of workers could be duplicated unencrypted to a laptop which is then thieved from an revealed car is jaw losing.
US Fast and Birthplace Security Hacked
In July a cyberpunk arranged named Electronic Crime breached directories at the US Fast and Birthplace Security using SQL hypodermic injection strikes, revealing the employees information of 200,000 Fast workers. They thrown out the thieved personal information, such as user names and security passwords onto sub areas managed by these divisions. On the pros, the team's purpose was to reveal the weeknesses and to humiliate the federal government, not to use the bargain data for dubious requirements.
Emory Healthcare Patient Records Lost
In Apr, Emory Healthcare revealed that 315,000 individual unencrypted information were losing. This occurrence varies from others on this record in that it did not include a network violation. 10 laptop or computer drives from an outdated pc were discovered to be losing from a storage facility. The drives included highly delicate surgical individual data, such as public protection figures, gathered over 17 season period.
Securing data can be costly, but a $200 thousand class action court action lawsuit awaiting against Emory Healthcare demonstrates the cost of inaction.
Utah State medicaid programs Statements Records Stolen
In Apr, the The state of utah Division of Technical Services revealed that 780,000 State medicaid programs individual claims information were thieved by a cyberpunk operating out of Southern European countries. The violation was held responsible on a misconfigured test hosting server implemented with a poor password.
State of Southern Carolina Information Breaches
Note that the headline here represents "breaches", dual.
Partly to leave space on my record for an extra deserving newcomers and partially to emphasize the extreme learning bend of the municipal servants in the Palmetto condition, I am mixing what has been called the "mother of all data breaches" with a smaller but greatly significant violation earlier in the season.
In Apr we discovered that a former condition worker had thieved 228,000 State medicaid programs participants' personal information information. He was captured delivering the information by email!
The violation was a simple prelude to perhaps the greatest data violation of all-time.
From Aug to mid Oct 3.6 thousand Social Security figures and 400,000 bank card figures were thieved from the Southern Carolina Division of Revenue. All but 16,000 of the bank cards were secured, but all of the Social Security figures were revealed.
In a unusual perspective to the story, the administration in Southern Carolina revealed that they are engaged in a "sting operation" that is attempting the restore the information by paying black mail.
That increases a few questions. Why openly talk about a pain function still in progress? What good is it to restore thieved data in digital age when it can easily be duplicated?
The most question of all may be how in the world could they have left so personal information unencrypted? Oh, they came up with an answer. Seems it was not needed by law so they realized it was OK.
Let's hope 2013 is a better season and that the abilities that be in both the public and private areas place the priority and emergency on data protection that it should get.
الاشتراك في:
تعليقات الرسالة (Atom)
0 التعليقات: