admin

http://www.kraasecurity.com http://blog.kraasecurity.com http://twitter.com/kraasecurity *Managed Security Services *Vulnerability Management *Compliance & Policy Development *PGP Security

Homepage: http://www.kraasecurity.com


Posts by admin

Can you protect yourself on Social Media?

March 1, 2010 - 9:44 pm

Tags: , , , , , , , ,
Posted in Identity theft, Social network, antivirus, social media | No comments

Image via Wikipedia

One of the greatest challenges to privacy and security in the next several years is Social Networks and Social Media. Sites like Facebook, Twitter, LinkedIn, MySpace and others can be the downfall of valuing information. The ability to share and provide information is completely the opposite of network security requirements.  This is really [...]

When will Vendors provide Risk Assessments of their products?

February 17, 2010 - 11:22 pm

Tags: , , , , , , , , ,
Posted in Compliance, Hacking News, Security Assesment, Supplier Security, Web Security, antivirus, risk assessment | Comments Off

Image via Wikipedia

If you drive a car and every week you have to get something fixed it would prove pretty annoying, disgusting, outrageous and you probably you would never buy that model again and probably wouldn’t by from that manufacturer either. So why do we accepts buggy software that is vulnerable to things like cross [...]

What is the value of a Data Breach?

January 27, 2010 - 9:33 pm

Tags: , , , ,
Posted in Compliance, HIPAA, Hacking News, PCI, Security Assesment | Comments Off

Image by Getty Images via Daylife

SC magazine just reported that the Ponemon Institute has determined the cost of a data breach is $204 per record. “Data breaches last year cost organizations $204 per exposed record on average, which represents an almost two percent increase over 2008, according to the fifth annual “Cost of  Data Breach” [...]

Ponemon Institute Cyber megatrends – Some Additions Needed

November 28, 2009 - 7:17 pm

Tags: , ,
Posted in Compliance, Corporate Stupidity, Could Computing, Outsourcing, Unstructured Data, Web 2.0 | Comments Off

Ponemon Institute recently released their  Cyber megratrends as listed below. While I agree with these I think there were a couple that could easily be added to the list. First, I would either add or modify Web 2.0 into Web 3.0. Lets look to what is going to happen versus what is happening. Incremental change [...]

HIPAA Vendor Compromised Healthcare Records

November 12, 2009 - 8:46 am

Tags: , , , ,
Posted in HIPAA | Comments Off

This is story that is several months old, but as I came across it, i thought it would make a good point. A vendor handling healthcare records has lost social security numbers of people in March of 2009. In this case, Health insurer Aetna, Inc., is reportedly providing 65,000 individuals with free credit monitoring [...]

HIPAA Compliance Data Breach with a Foreign Supplier

November 3, 2009 - 8:14 am

Tags: , ,
Posted in HIPAA | Comments Off

Recently, the Economic Times Report in India discussed a successful “Sting operation by a UK agency in which some health related data was bought from a medical transcription company” . What this means is all that perosnal and HIPAA confidential data that was being transfered for transcription got stolen in the most likely scenario.  There [...]

IPhone Apps Every Road Warrior Entrepreneur Needs

October 22, 2009 - 4:36 am

Tags: , , , , , , , , ,
Posted in Entrepreneur | Comments Off

The Blackberry has been the mainstay of the business world for years. But as we know, the IPhone is eating away at market share. There are over 75,000 apps for the IPhone now and growing steadily. For those who have Blackberry Thumb, you can probably look forward to IPhone Index Finger at some point in [...]

Information Devaluation Through Phishing

September 25, 2009 - 3:55 pm

Tags: , , , , , ,
Posted in Phishing | Comments Off

Image via Wikipedia

Information Devaluation Through Phishing
The value of information has been decreasing over time. How do you see this isn the real world? There are two ways, one can be seen from the user perspective and the other from the attacker/bad guy perspective.
From a user point of view, the most obvious method to see information [...]

FTC’s Additional Rules for HIPAA Security

August 23, 2009 - 3:24 pm

Tags: , , ,
Posted in Compliance, Government Security, HIPAA, Security Assesment, risk assessment | Comments Off

FTC’s Additonal Rules for HIPAA Security
The Federal Trade Commission (FTC) recently issued a rule which gives more scope to the data breach notification rules as part of the Health Insurance Portability and Accountability Act (HIPAA). The addition targets companies that provide health info in an online storage facitlity. Things like Google Health or Healthvault would [...]

Credit Card Theft Put Miami on the Map

August 19, 2009 - 10:37 am

Tags: , , , , , , ,
Posted in Compliance, Corporate Stupidity, Government Security, Hacking News | 1 comment

Miami is a fun place to live and work (there are actually people who work here). Its a great vacation spot, people enjoy the nightlife and now we have something else to crow about. The largest credit theft ring was based here!
According to Bloomberg, “Albert Gonzalez, a 28-year-old Miami resident, and two hackers living “in [...]

Get Adobe Flash playerPlugin by wpburn.com wordpress themes