Posts Tagged ‘ID theft’

Businesses are Also Synthetic ID Theft Targets

Monday, July 21st, 2014

Early this month I was happy to discuss synthetic identity theft on the Great Day show. I briefly talked about how synthetic identity theft was also committed in the U.S. using business employer identity numbers (EINs). Crooks often target small and midsize businesses for this type of crime. After the show I got a lot of questions asking for more information about synthetic EIN identity theft. (more…)

Tags:, , , , , , , , , , , , , ,
Posted in identity theft, Uncategorized | No Comments »

Please Don’t Tell Me You’re Still Using SSNs as IDs!

Tuesday, October 2nd, 2012

Okay, I just finished the 3rd conversation in just the past two weeks alone with an organization that is using Social Security Numbers (SSNs) as their primary form of customer and/or employee identification. I’ve written about this topic numerous times over the past 15 years.  Seriously; all businesses out there doing this, please make a plan to stop doing this! Why? Here are three good reasons.  (more…)

Tags:, , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , , ,
Posted in Information Security, Laws & Regulations | 1 Comment »

Health Net Incident Impacting 1.9 Million: Lessons Learned

Wednesday, April 6th, 2011

Yesterday I provided some thoughts to Howard Anderson at HealthinfoSecurity.com about the recent Health Net incident for his article Here are some expanded thoughts for his questions…

(more…)

Tags:, , , , , , , , , , , , ,
Posted in HIPAA, HITECH | No Comments »

Memorial Day & ID Theft Using Info Of Deceased

Tuesday, May 26th, 2009

Every year since probably my first year on this world I’ve visited cemetaries on the Sunday right before Memorial Day. My parents’ reasoning was that we could get the graves and headstones decorated (Memorial Day is also known as Decoration Day) so that those visiting on Monday would see them. Probably where I got my habit of always arriving to meetings and events WAY too early! 🙂
This past Sunday my family drove my father out to three cemetaries to once more continue this tradition…

(more…)

Tags:, ,
Posted in identity theft, Non-compliance Sanctions Examples | No Comments »

5-Point Checklist for Info Sec and Privacy Pros to Use for Data Protection and Privacy Law Compliance

Sunday, October 28th, 2007

One of the basic privacy principles is to limit the collection of personally identifiable information (PII) to only that which is necessary for the business purpose for which it is being collected. These privacy principles, built largely around the OECD privacy principles, are the basis for most data protection and privacy laws throughout the world.

(more…)

Tags:, , , , , , , , , , , , ,
Posted in Information Security, Privacy and Compliance, Training & awareness | No Comments »

Data Will Always Be Less Safe In The Future…I Don’t Want To Get Gussied Up To Talk On The Phone

Wednesday, October 17th, 2007

I have a blog problem…there are way too many things I want to blog about and not enough hours in the day to do it! Throughout each day I note news items from the TV, or website news articles, or research, or reports, or just observations while at businesses or in public, and I only have a chance to blog about a small fraction of them. Today I think I’ll just briefly mention five of the topics I’ve planned to blog about, along with a brief note about each, and then maybe I’ll be able to revisit them sometime in the near future and discuss them at greater length.

(more…)

Tags:, , , , , , , , , , , , , , , ,
Posted in Information Security, Miscellaneous, Privacy and Compliance | No Comments »