Summary
Federal judges may shift direction and require Hanover Farms Inc., TD Ameritrade and UniCare Life & Health Insurance Co. to make class action payments for exposing third party information that can open the door to ID theft.
Most web sites, software and operational procedures are hacker friendly and repairing them will take years. Plan B, is to attempt to stop theft by using Data Loss Prevention and Encryption tools.
Unfortunately, some IT departments are rejecting these tools as too demanding.
Most web sites, software and operational procedures are hacker friendly and repairing them will take years. Plan B, is to attempt to stop theft by using Data Loss Prevention and Encryption tools.
Unfortunately, some IT departments are rejecting these tools as too demanding.
Analysis
Egos aside, data loss prevention and encryption tools are currently our very best cyber theft defense; and most importantly, judges are finding it impossible to ignore the millions of angry citizens who are tired of repeatedly having their sensitive information exposed.
Michael Cherry, an online-security consultant, says companies can encrypt credit card data at cash registers, which PCI doesn't require, at minimal cost. "You can be worry free for less than $100 per cash register," says Mr. Cherry.
Copyright January 2010, Michael Cherry Cherry Biometrics Inc., all rights reserved
Michael Cherry, an online-security consultant, says companies can encrypt credit card data at cash registers, which PCI doesn't require, at minimal cost. "You can be worry free for less than $100 per cash register," says Mr. Cherry.
Two companies that provide such technology -- called personal identification number pad encryption -- are courting new customers, playing up Hannaford and Okemo's vulnerabilities.
Verifone Holdings is promoting its VeriShield system, which was purchased by Family Dollar. A similar product, called MagneSafe, is offered by MagTek Inc., of Carson, Calif.
Data loss prevention includes both network and end point (PC) detection. Encryption offerings can support credit cards, data base and email. Many firms have offerings in this emerging market including: Palisade Systems, Code Green Networks, Safend, GTB Technologies, CA inc. DLP, Identity Finder, Websense Data Endpoint, Trend Micro LeakProof, Indorse, Proofpoint, Vericept, Workshare, Symantec Vontu, EMC RSA, Voltage, Verdasys, McAfee, inc. DLP, Magtek MagneSafe, PGP, Fidelis Security and VeriFone Holdings VeriShield Protect
Data loss prevention includes both network and end point (PC) detection. Encryption offerings can support credit cards, data base and email. Many firms have offerings in this emerging market including: Palisade Systems, Code Green Networks, Safend, GTB Technologies, CA inc. DLP, Identity Finder, Websense Data Endpoint, Trend Micro LeakProof, Indorse, Proofpoint, Vericept, Workshare, Symantec Vontu, EMC RSA, Voltage, Verdasys, McAfee, inc. DLP, Magtek MagneSafe, PGP, Fidelis Security and VeriFone Holdings VeriShield Protect
Copyright January 2010, Michael Cherry Cherry Biometrics Inc., all rights reserved
Analyses are solely the work of the authors and have not been edited or endorsed by GLG.
