Security Management Strategies for the CIO
Email Alerts
-
PCI DSS Council adding new standard for payment applications
The Payment Application Data Security Standard (PA-DSS) is based on Visa's Payment Application Best Practices. It's designed to bolster security during application development. Article | 08 Nov 2007
-
Don't blame PCI DSS for TJX troubles, IT pros say
Data breaches at TJX and elsewhere have some questioning the effectiveness of PCI DSS, but others say the real problem is how companies approach the guidelines. Article | 05 Nov 2007
-
IBM to boost security spending, push PCI DSS program
IBM plans to invest $1.5 billion on security research in 2008. The company is also using recent acquisitions to introduce a PCI DSS program. Article | 01 Nov 2007
-
Should TJX really be worried about data breach fallout?
Though more than 94 million accounts may have been compromised in the TJX data security breach, customers remain faithful. That doesn't mean companies can relax their standards. Article | 24 Oct 2007
-
TJX breach compromised more than 94 million accounts
The security breach at TJX compromised 94 million accounts -- far more than the 45 million TJX has acknowledged -- a banking group claims in court filings. Article | 24 Oct 2007
-
Microsoft report warns of more data breaches
Microsoft's latest security intelligence report and a survey of marketing, security and privacy staff suggests data breaches happen when departments don't communicate. Article | 23 Oct 2007
-
Home Depot and Iron Mountain report missing data
Missing data traced to Home Depot and Iron Mountain shows that companies can't just say a missing device is encrypted. They must be able to prove it, one expert says. Article | 17 Oct 2007
-
With data collection soaring, is it too late to stem the flow?
With companies and government agencies storing massive amounts of confidential data, some experts are seeking ways to stem the flow. As Dennis Fisher explains, something must be done, and fast. Column | 11 Oct 2007
-
Industry group uses awareness month to lobby for data breach laws
The Cyber Security Industry Alliance is shifting from educating businesses to targeting members of Congress in its push for tougher data security and data breach notification laws. Article | 08 Oct 2007
-
State agency releases disks compromising 450,000 identities
The Massachusetts Division of Professional Licensure mailed computer disks containing the Social Security numbers of 450,000 people. News | 05 Oct 2007