Data breaches remain a significant problem for any company that manages knowledge about personal identity. In recent weeks, widely publicized details breaches have hit Lending Tree, Hannaford Bros. Co., and the Bank of Ireland. Past notes breaches at ChoicePoint, TJX Cos., and the U.S. division of Veterans Affairs have resulted in large, class-action lawsuits with claims for or settlements in the millions of dollars in some cases.

At the April RSA Conference in San Francisco, a number of speakers addressed the technical and legal aspects of the details breach problem. The conference, sponsored by input safety measure company RSA shield, Inc., was attended by more than 17,000 citizens and featured 200-plus sessions on data protection issues, including goods protection technology, strategies and compliance challenges, and legal and governmental issues. that latter issue was the focal point for a number of speakers who addressed the info breach challenge.

Hacking, Theft, and scam

Many of the documents breaches

reported in the media have been the outcome of outside forces against a goods company. that has taken the design of criminals hacking into database files, stealing portable devices (laptops or hard drives) containing goods, or using crooked means to gain access to goods. According to the “2007 E-Crime Watch Survey” — conducted by Microsoft, Carnegie Mellon University’s CERT Program, and the U.S. Secret Service and originally published in CSO Magazine 49 percent of survey participants reported that some anatomy of electronic crime had been attempted against them. In nearly 40 percent of those cases, the crime involved attempted access to customer or credit card records.

Researchers from the CERT Program presented a longer, more detailed analysis of that goods at the RSA Conference. They noted that insiders (people within the organization) were responsible for more than one-third of the e-crimes, according to the 2007 survey. The crimes ranged…

Orginal post by Top Tech News