Risk Management with Stuart King and Duncan Hart:

August, 2008


August 31, 2008  7:20 AM

Man’s ‘pants’ password is changed

sking2 Profile: sking2
Misc, Security management

A bank that not only refuses to allow customers to have passwords deemed unacceptable but, more worryingly, allows it's employees to view customer passwords and change them seemingly at a whim. Read about it on the

August 29, 2008  9:15 AM

Surfing Safer

sking2 Profile: sking2
Misc, Network security, Useful Links

wabi_logo.gifAn acquaintance is one of a team developing a new website -


August 27, 2008  9:15 AM

New approach needed to tackle data loss

sking2 Profile: sking2
Security management

We could do with having a time out in which to reconsider our approach to dealing with data loss. We're currently inundated with stories - the latest being...

0 Comments     RSS Feed     Email a friend


August 26, 2008  7:20 AM

Best Western and lessons for us all

sking2 Profile: sking2
malware, Security management

The actual scope of the Best Western data breach is open to speculation. The Sunday Herald scoop was that "stolen login details were..put up for sale and shared on an underground website operated by a...


August 25, 2008  7:00 AM

Best Western: speculation and denials

sking2 Profile: sking2
Security management

Best Western have publicly refuted the story reported in the Sunday Herald and stated that "Claims reported about our Central Reservations customer records are not...


August 24, 2008  8:37 PM

8 million victims in the world’s biggest cyber heist

sking2 Profile: sking2
Security management

AN INTERNATIONAL criminal gang has pulled off one of the most audacious cyber-crimes ever and stolen the identities of an estimated eight million people in a hacking raid that could ultimately net more than £2.8billion in illegal funds...The Russian gangs who specialise in this kind...


August 22, 2008  8:20 AM

Lost USB stick with sensitive Home Office data

sking2 Profile: sking2
Security management

This latest data loss has it all (see http://news.bbc.co.uk/1/hi/uk/7575989.stm)

- Unencrypted mobile senstive data (on a USB stick)

- A third party vendor responsible for the data

- A public disclosure of the...


August 21, 2008  7:00 AM

Don’t forget to review the security of third party vendors

sking2 Profile: sking2
Security management

A recurring theme of this blog is the importance of verifying the security of third party vendors. It was one of my top security topics for this year (see here) back in January where it was...


August 20, 2008  6:09 AM

Laptop Encryption: implement as standard?

sking2 Profile: sking2
Network security, Security management

Is it still necessary to have to make a case to implement encryption on laptop computers or should we, by now, simply consider it to be normal practice? Seems like a question with a pretty obvious answer but clearly not because organisations such as the Ministry of Justice - as reported


August 19, 2008  6:00 AM

NHS Trust lost diary with personal data

sking2 Profile: sking2
Security management

An interesting data "breach" reported on the Breach Blog where a midwife's diary containing personal information on hundreds of new and expectant mothers has been lost from a Health Trust...


Forgot Password

No problem! Submit your e-mail address below. We'll send you an e-mail containing your password.

Your password has been sent to: