Monterey County grand jury finds computer data risks

[InfoSec News <alerts () infosecnews org>]

http://www.montereyherald.com/news/ci_26009592/monterey-county-grand-jury-finds-computer-data-risks

By Julia Reynolds
Monterey County Herald
06/21/2014

SALINAS -- A civil grand jury issued a stern critique of Monterey County's 
ability to protect sensitive computer information, warning that delays in 
updating policies and procedures could expose the county to 
multimillion-dollar lawsuits.

The interim grand jury report was released Thursday.

"During the past eight or more years the Monterey County government has 
not devoted adequate attention to compliance with the California and 
federal privacy laws," the reports states.

It said the county "must now immediately change this attitude to strict 
attention and compliance if it is to avoid serious financial consequences 
for potential violations."

The investigation came about, the grand jurors wrote, after they learned 
of a March 2013 data breach at the county's Department of Social Services 
"on an old 200S computer health database connected to a California State 
network."

In that breach, "data was illegally accessed through state computers."

[...]



--
Evident.io - Continuous Cloud Security for AWS.
Identify and mitigate risks in 5 minutes or less.
Sign up for a free trial @ https://evident.io/