Today it was widely reported, including on Computerworld, that Morgan Stanley claimed millions of their emails requested for arbitration were destroyed during the 9/11 terrorist attacks. The National Association of Securities Dealers (NASD) accused Morgan Stanley of in fact having the emails on backup media the entire time.
Posts Tagged ‘awareness and training’
Email Smack Down: Morgan Stanley Charged by NASD with Purposefully Withholding Emails
Thursday, December 21st, 2006PCAOB Formally Proposes New Auditing Standard for Section 404 of SOX
Wednesday, December 20th, 2006Yesterday the SEC issued a press release regarding a Public Company Accounting Oversight Board (PCAOB) proposal for a new auditing standard for Section 404 of the Sarbanes-Oxley (SOX) Act. The goal of the proposal will be to strengthen investor protection while getting rid of what is referenced as the “unduly expensive and inefficient auditing standard under Section 404.”
Data Ransom Story: Crooks Targeting Small Businesses and Individuals
Tuesday, December 19th, 2006Yesterday USA Today ran a report, “Cybercrooks hold PC data captive.”
This is nothing new, I blogged about this type of ransom scheme earlier this year. The crooks are getting more creative.
Data Ransom Story: Crooks Targeting Small Businesses and Individuals
Tuesday, December 19th, 2006Yesterday USA Today ran a report, “Cybercrooks hold PC data captive.”
This is nothing new, I blogged about this type of ransom scheme earlier this year. The crooks are getting more creative.
HIPAA: Report Shows Most Complaints Not Investigated
Monday, December 18th, 2006Government Health IT published an interesting report today, “Most privacy complaints are not investigated.”
From the article:
“The Department of Health and Human Services investigated less than 25 percent of 22,964 privacy complaints submitted to HHS‚Äô Office for Civil Rights (OCR) from April 2003 through September 2006”
Stolen Laptop: Laptop and Printouts with PII about 600 Students in Colorado
Sunday, December 17th, 2006The Longmont, CO Daily Times reported December 14 that a nurse’s laptop was stolen from her car whle she was parked at a restaurant, along with paper records containing personally identifiable information (PII): “students‚Äô names and dates of birth; the names of their schools and what grade they are in; the students‚Äô Medicaid numbers; and their parents‚Äô names.”
Stolen Laptop: Laptop and Printouts with PII about 600 Students in Colorado
Sunday, December 17th, 2006The Longmont, CO Daily Times reported December 14 that a nurse’s laptop was stolen from her car whle she was parked at a restaurant, along with paper records containing personally identifiable information (PII): “students‚Äô names and dates of birth; the names of their schools and what grade they are in; the students‚Äô Medicaid numbers; and their parents‚Äô names.”
Stolen Laptop: Cleartext Medical PII on 25,000 in Pennsylvania
Sunday, December 17th, 2006On December 14 WCPO TV 9 News reported:
“A break-in in Springdale, Ohio is affecting thousands of people in Pennsylvania. The office of Electronic Registry Systems on Northland Boulevard was broken into Thanksgiving weekend and a computer was stolen. That computer had medical records on it for some 25,000 participants in a Pennsylvania health plan. Police don’t suspect I.D. theft. They say, in other recent cases, the thieves wiped the computer’s hard drive clean and then tried to re-sell it.”
Stolen Laptop: 3rd Theft from Boeing Since November 2005; Clear Text PII of 382,000 On the Latest
Sunday, December 17th, 2006It was reported December 15 that Boeing had the 3rd laptop stolen in just a little over a year.
The laptop was stolen from an employee’s car. PII included “names, home addresses, phone numbers, Social Security numbers and dates of birth for current and former Boeing employees.”
Penalty Applied for Laptop Theft: More Significant Penalties Are Needed to Motivate Better Safeguards
Thursday, December 14th, 2006The Boston Globe reported Tuesday that “Ameriprise Financial Services Inc. will pay $25,000 to settle a probe of how one of its laptop computers went missing with the personal data of thousands of Massachusetts residents.”
An Ameriprise Financial Services laptop was stolen in 2005 that contained clear text personally identifiable information (PII) about over 200,000 individuals.
