Cyber espionage – something to worry about?

McAfee released their “Virtual Criminology Report” earlier this year and warned that  there is a growing threat to national security, as cyber espionage becomes increasingly sophisticated, moving from simple network probes to well-funded, well-organized, and possibly government backed operations. The intent is not only financial gain, but also political or competitive gain.

Some other interesting news items have appeared in the recent past.

Read more

Categories:

Misconceptions about outsourcing security

As I talk to CISOs and CIOs I find that there are many misconceptions about outsourcing security. Here are the most common ones that I come across:

Read more

Categories:

Do you trust the merchants to protect your credit cards?

On 4 October 2007,  The National Retail Federation (NRF) Chief Information Officer and Senior Vice President, David Hogan wrote a letter to the Payment Card Industry (PCI) Standards Council requesting that the card industry to stop requiring merchants to store complete card numbers. Currently, some merchants are required to keep credit card numbers for up to 18 months to satisfy card retrieval and dispute requests. The letter said, “"Instead of making the industry jump through hoops to create an impenetrable fortress, retailers want to eliminate the incentive for hackers to break into their systems in the first place." NRF proposes that credit card companies and their banks should provide merchants with the option of keeping nothing more than the authorization code provided at the time of sale and a truncated receipt, rather than requiring merchants to keep the data for an extended amount of time.

Read more

Categories: