Comments on: ChoicePoint to pay $500,000 to settle with 43 states and D.C. http://itknowledgeexchange.techtarget.com/security-bytes/choicepoint-to-pay-500000-to-settle-with-43-states-and-dc/ A SearchSecurity.com blog Sun, 29 Nov 2009 11:14:32 +0000 http://wordpress.org/?v=2.6.2 By: StillSecure, After All These Years http://itknowledgeexchange.techtarget.com/security-bytes/choicepoint-to-pay-500000-to-settle-with-43-states-and-dc/#comment-325 StillSecure, After All These Years Sat, 02 Jun 2007 02:58:29 +0000 http://security.blogs.techtarget.com/2007/06/01/choicepoint-to-pay-500000-to-settle-with-43-states-and-dc/#comment-325 <strong>A slap on the wrist, this is why companies don't do all they can about security</strong> A lesson I have learned in security is that most organizations can be better about security but choose not to. They vote with their pocketbooks and budgets to manage the risk of loss with the cost of security. A perfect <strong>A slap on the wrist, this is why companies don’t do all they can about security</strong>

A lesson I have learned in security is that most organizations can be better about security but choose not to. They vote with their pocketbooks and budgets to manage the risk of loss with the cost of security. A perfect

]]> By: Dennis Fisher http://itknowledgeexchange.techtarget.com/security-bytes/choicepoint-to-pay-500000-to-settle-with-43-states-and-dc/#comment-324 Dennis Fisher Fri, 01 Jun 2007 16:21:03 +0000 http://security.blogs.techtarget.com/2007/06/01/choicepoint-to-pay-500000-to-settle-with-43-states-and-dc/#comment-324 An excellent point, Michael. I'm not sure what the right phrase is, but maybe security lapse or breakdown is closer to the truth. An excellent point, Michael. I’m not sure what the right phrase is, but maybe security lapse or breakdown is closer to the truth.

]]> By: Michael Durnack http://itknowledgeexchange.techtarget.com/security-bytes/choicepoint-to-pay-500000-to-settle-with-43-states-and-dc/#comment-323 Michael Durnack Fri, 01 Jun 2007 15:47:02 +0000 http://security.blogs.techtarget.com/2007/06/01/choicepoint-to-pay-500000-to-settle-with-43-states-and-dc/#comment-323 I find it hard to fathom why everyone calls this a "data breach". There was no breach here, they handed the information over to the thieves. This gives people the impression they were hacked into or had a laptop stolen etc. This company was guilty of poor controls, lack of adequate procedures, and mismanagement. This was really a breach of trust. I find it hard to fathom why everyone calls this a “data breach”. There was no breach here, they handed the information over to the thieves.

This gives people the impression they were hacked into or had a laptop stolen etc.

This company was guilty of poor controls, lack of adequate procedures, and mismanagement. This was really a breach of trust.

]]>