Criminals Keeping Ahead of Data Breach Laws, Experts Warn

[lyger <lyger () attrition org>]

http://redmondmag.com/articles/2009/11/09/criminals-ahead-of-data-breach-laws.aspx

The Senate Judiciary Committee on Thursday approved two personal data 
security bills that would establish federal standards for protecting data 
and reporting its loss. But security experts say that threats to personal 
data are evolving faster than our responses to them.

"The crooks are trying to find out how to better impersonate you on the 
Internet," said Rick Kam, president of ID Experts, at a recent data 
security briefing hosted by TechAmerica.

Criminals are aggregating more information about individuals that, though 
innocuous in itself, could be used for fraud if correlated. They also are 
tapping new sources and types of data, including electronic medical 
records.

The consequences can be dire, said Dan Steinberg, an associate with 
Booz-Allen Hamilton. The theft of personal data can create financial 
problems and interfere with the victim's ability to get health insurance 
and medical care.

The committee passed S. 139, the Data Breach Notification Act, introduced 
by Sen. Dianne Feinstein (D-Calif.), by a vote of 14 to 2, and S. 1490, 
the Personal Data Privacy and Security Act of 2009, introduced by Sen. 
Patrick J. Leahy (D-Vt.), with a vote of 11 to 5.

[...]
_______________________________________________
Dataloss Mailing List (dataloss () datalossdb org)
Archived at http://seclists.org/dataloss/

Get business, compliance, IT and security staff on the same page with
CREDANT Technologies: The Shortcut Guide to Understanding Data Protection
from Four Critical Perspectives. The eBook begins with considerations
important to executives and business leaders.
http://www.credant.com/campaigns/ebook-chpt-one-web.php