Sister CISA CISSP:

Data Breaches


November 23, 2009  5:39 PM

Buy Your OWN Automatic Theft Machine



Posted by: Arian Eigen Heald
Automatic Theft Machines, Data Breaches, Eigen's Rules of Thumb, Hardware & InfoSec, Identity theft, Stupid Technology

Is it really a surprise that ATMs can be bought on eBay or Craigslist? Given the amount of...

November 13, 2009  9:49 PM

You Can’t Outsource Reputation



Posted by: Arian Eigen Heald
Data Breaches, data security, information security, TCM (Truly Clueless Management)

Reviewing yet another data breach in the news, I was struck by the phraseology of the news report. Specifically, the article on MassMutual brought a point to mind that I keep using with companies and...


November 10, 2009  6:06 PM

Things You Can Do To Help An Investigation, Part II



Posted by: Arian Eigen Heald
Data Breaches, Digital Forensics, Incident Response, information security

In a previous column, I talked about the importance of locking up a computer and not continuing to use it after it has been compromised, or the fraudster was fired. This works in a lot...


November 5, 2009  4:52 PM

A Not-So-Great Use of Cloud Computing



Posted by: Arian Eigen Heald
cloud computing, Cloud Security, Data Breaches, Data Center, data security, information security

As I'm sure you know, I'm not yet a big fan of "cloud computing," known by various acronyms. I have yet to see a really comprehensive approach to audit and security. Ultimately, you don't know where your data is in the "cloud." And the Feds have access to it without a warrant. So you...


October 30, 2009  12:53 AM

When a “Fix” is Not a Fix – The Fix is In



Posted by: Arian Eigen Heald
Data Breaches, Hardware & InfoSec, information security, Stupid Technology, TCM (Truly Clueless Management), Tearing My Hair Out, Wireless

In my previous post, I discussed the Time Warner/SMC modem enormous security flaw. Lo and behold, I am visited and left a comment by "Adam Wood" defending SMC,...


October 21, 2009  6:52 PM

Using Time-Warner as Your Internet Provider? Check Your Modem QUICKLY



Posted by: Arian Eigen Heald
Data Breaches, data security, information security, Stupid Technology, Tearing My Hair Out, Wireless

As lf 10/20/09, a software maven has written of a major security hole (one you can drive a TRUCK through) in the wifi/cable modem models issued to customers who don't want to use their own equipment. Here's the link, in all its' details, by David Chen,...


October 15, 2009  5:07 PM

End-To-End Encryption -Wouldn’t It Be Nice?



Posted by: Arian Eigen Heald
Data Breaches, data security, information security, PCI

Since Heartland suffered a data breach (disclosed in January), they've become the poster child for end-to-end encryption. This is defined as encrypting card information from the moment it's swiped until it reaches the card issuer. Of course, there may be some motivation provided by the fact that...


October 8, 2009  10:50 AM

Malware on the Move



Posted by: Arian Eigen Heald
Data Breaches, information security

I was reading an article from Window Secrets this morning at 6:00 AM (in a hotel room, what else does a geek do?) and I wanted to pass along an excellent article in the newsletter. The folks there offer a free and paid version of their newsletter. I have...


October 2, 2009  3:35 PM

Your Electric Utility and The Privacy Impact



Posted by: Arian Eigen Heald
Data Breaches, information security, Privacy

You wouldn't think that the power meter in your basement could have anything significant to say about you, personally, would you? Well, you (and I) would be wrong, very wrong, on that point. We tend to have the mindset that only computers store and transport personal information, but there are...


September 22, 2009  4:33 PM

Next Generation ATM Skimmers



Posted by: Arian Eigen Heald
ATM Security, Automatic Theft Machines, Data Breaches, Hardware & InfoSec, information security

I was over on identitytheft.info watching some video feeds when I came across this one. It's worth taking a look at not because the technique for attaching Bad Things is all that different, but...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: