||DO YOU KNOW IF SOMEONE IS ACCESSING YOUR DATA?
How many times have you read about a security breach where unauthorized access had been going on for months, or even years? It’s a scary situation for the victims affected, and equally unnerving for the CEO or upper management that has this happen under their watch. They know it is ultimately their responsibility to keep personal and intellectual property safe and a breach indicates they are not on the ball.
Any length of time that a breach is in process isn’t acceptable, but when it goes undetected for a number of months or longer, the company is usually considered negligent . . . and that will cost them money. Take for instance InterActive Financial Marketing Group, a division of Dominion Enterprises located in Virginia. They disclosed last week that 92,095 applicants who submitted credit applications to IFMG’s family of special finance Web sites had their names, addresses, birth dates, and Social Security numbers compromised. In a press release a Dominion Enterprises Discloses Data Breach in Business Division it was reported that a computer server was hacked into and illegally accessed by an unknown and unauthorized third party between November 2007 and February 2008. That’s three months without detection, folks! The appearance of this type of business not having active network monitoring and management systems and processes in place is very disturbing. You can be sure that the cost of this incident is potentially going to far outweigh the cost of active network monitoring and security management.
Last month, Heinemann-Raintree, publishers of PreK-Secondary nonfiction books, disclosed that after 18 months they discovered an unauthorized person was able to obtain access to their database and view customers’ names, billing and shipping addresses, payment methods, and credit-card numbers. Moraine Park Technical College also just informed customers who