BreachExchange mailing list archives

Re: They Take it Seriously? Oh, Sure

From: "B.K. DeLong" <bkdelong () pobox com>
Date: Wed, 10 Jan 2007 10:13:57 -0500

We just had an interesting briefing here at The Institute about
compliance enforcement and how little personal action and even less
regulatory action is being taken with regard to GLB, SOX, FFIEC, PCI
etc.

On 1/10/07, Sean Steele <SSteele () infolocktech com> wrote:

Not to sound flippant, but would do we expect them to say?  Spin control is spin control, and PR wonks and 
in-the-crosshairs execs will continue to say the only thing they can say -- namely, that they take security very 
seriously. Such is life, right?

What I'd like to see is regulatory and civil penalties levied at the offending organizations, done in a "very 
serious" way.




-- 
B.K. DeLong (K3GRN)
bkdelong () pobox com
+1.617.797.8471

http://www.wkdelong.org                    Son.
http://www.ianetsec.com                    Work.
http://www.bostonredcross.org             Volunteer.
http://www.carolingia.eastkingdom.org   Service.
http://bkdelong.livejournal.com             Play.


PGP Fingerprint:
38D4 D4D4 5819 8667 DFD5  A62D AF61 15FF 297D 67FE

FOAF:
http://foaf.brain-stream.org
_______________________________________________
Dataloss Mailing List (dataloss () attrition org)
http://attrition.org/dataloss
Tracking more than 143 million compromised records in 530 incidents over 7 years.

Current thread:

They Take it Seriously? Oh, Sure Richard Forno (Jan 10)
- Re: They Take it Seriously? Oh, Sure B.K. DeLong (Jan 10)
- Re: They Take it Seriously? Oh, Sure George Toft (Jan 11)
  - Re: They Take it Seriously? Oh, Sure Adrian Sanabria (Jan 20)
- <Possible follow-ups>
- Re: They Take it Seriously? Oh, Sure Sean Steele (Jan 10)
  - Message not available
    - Message not available
    - Re: They Take it Seriously? Oh, Sure B.K. DeLong (Jan 10)