Monthly Archives: February 2011

Security Awareness and Climate Change – Scaring People is Not the Right Approach

Posted on February 17, 2011 by Steve Addison

Far too many security awareness training programs start with a series of horror stories about hackers and identity theft, lost money and damaged reputations, privacy breaches and deleted computer files. Before long, the average student starts to tune out – … Continue reading

Posted in Education, Information Security | 1 Comment

Sometimes Hackers Use Hardware

Posted on February 14, 2011 by Steve Addison

Hackers don’t always try to break into computer systems through the Internet, or by using malicious software (malware) in email attachments. If they can gain physical access to computers, there’s often a simpler way. Several public libraries in the UK … Continue reading

Posted in Information Security | Leave a comment

Stealing Passwords from a Locked iPhone – More Smart Phone Insecurity

Posted on February 10, 2011 by Steve Addison

Another reminder – as if we needed it – that smart phones and mobile devices are increasingly the targets for hackers. This time, it’s an iPhone issue. German researchers claim to be able to steal passwords stored on a locked … Continue reading

Posted in Information Security | Leave a comment

Medical Identity Theft – Advice from the FTC

Posted on February 9, 2011 by Steve Addison

The FTC has posted a useful guide to “medical identity theft” for health care providers and insurers. Medical identity theft occurs when someone obtains health care services e.g. treatment, prescription drugs … using the identity of someone else, or when … Continue reading

Posted in Information Security | 1 Comment

HIPAA Happens – A Video from UNLV

Posted on February 7, 2011 by Steve Addison

Looking for a video to show your staff some of the ways that they might breach the HIPAA Privacy and/or Security rules? Here’s a short (5 minute) YouTube video from UNLV called HIPAA Happens that illustrates some possible scenarios. Send … Continue reading

Posted in Compliance, Information Security | Leave a comment

Security Benefits of Cloud Computing

Posted on February 7, 2011 by Steve Addison

Cloud computing is filled with buzzwords and, for many people, fear of the unknown. And a lot has been made of the security risks that might result from cloud computing. However, for many organizations (especially small businesses and non-profits), judicious … Continue reading

Posted in Information Security | Leave a comment

Privacy and Security Rules Cover Information – Not Technology

Posted on February 4, 2011 by Steve Addison

With few exceptions, rules relating to privacy and security such as HIPAA and GLBA (Gramm Leach Bliley) cover the information, and don’t specifically relate to any particular technologies. So, they apply whether you’re using your PC, a fax machine, a … Continue reading

Posted in Compliance, Information Security | Leave a comment

Even If You Expect An Email Attachment, It’s Not Always Safe

Posted on February 1, 2011 by Steve Addison

The FBI recently issued a warning about malware included in email attachments responding to online job postings. They quote the case of a US business that lost more than $150,000 after an employee opened an attachment that had been sent … Continue reading

Posted in Information Security | Leave a comment