Open Security Foundation To Maintain DataLossDB

← Back to Stories (view on slashdot.org)

Open Security Foundation To Maintain DataLossDB

Posted by kdawson on Tuesday July 15, 2008 @11:09AM from the breaches-r-us dept.

An anonymous reader points out an announcement up at Attrition.org, that going forward their Data Loss Database will be taken over and maintained by the Open Security Foundation. From the news release: "...OSF is pleased to announce that the DataLossDB (also known as the Data Loss Database — Open Source [DLDOS] currently run by Attrition.org) will be formally maintained as an ongoing project under the OSF umbrella organization as of July 15, 2008... The project's core mission is to track the loss or theft of personally identifying information not just from the United States, but across the world. As of June 4, 2008, DataLossDB contains information on over 1,000 breaches of personal identifying information covering over 330 million records. The... DataLossDB will be free for download and use in non-profit work and research. The new website launch builds off of the current data set and provides an extensive list of new features."

34 comments

Min score:

Reason:

Sort:

DLDOS? by Chyeld · 2008-07-15 11:11 · Score: 4, Funny

Seriously? You named your project 'dildos'? You might want to rethink that acronym folks.
1. Re:DLDOS? by SomeJoel · 2008-07-15 11:15 · Score: 1
  
  Unless of course they did it on purpose as an easy way to draw attention to the project.
  
  --
  <Complete your profile by adding a signature!>
2. Re:DLDOS? by Anonymous Coward · 2008-07-15 11:27 · Score: 0
  
  Seriously? You named your project 'dildos'? You might want to rethink that acronym folks.
  Could be worse. Bring out the GIMP!
3. Re:DLDOS? by d2d · 2008-07-15 12:27 · Score: 1, Informative
  
  Not really, was just funny at the time. The i actually was an initial component of the acronym, but was deemed a bit much. So we picked the more subtle route (/i//) I will miss that name!
4. Re:DLDOS? by anilg · 2008-07-15 22:41 · Score: 1
  
  You do realize it's the attrition.org guys. they're a little "out there". Check out their going postal section.. inline with TPB's legal.
  
  --
  http://dilemma.gulecha.org - My philospohical short film.
OMGWTFBBQ by TheSHAD0W · 2008-07-15 11:11 · Score: 1, Redundant

Someone needs to call the acronym police on them. DLDOS??
A database that loses data??? by EmbeddedJanitor · 2008-07-15 11:18 · Score: 3, Funny

Isn't it better to just use Mysql?

--
Engineering is the art of compromise.
1. Re:A database that loses data??? by sticks_us · 2008-07-15 13:55 · Score: 1
  
  Isn't it better to just use Mysql?
  I LOL'd
  
  --
  "Beware of bugs in the above code; I have only proved it correct, not tried it." -- Donald Knuth
Just try find dldos with Google by EmbeddedJanitor · 2008-07-15 11:21 · Score: 1

Yup, lotsa hits!

--
Engineering is the art of compromise.
1. Re:Just try find dldos with Google by krewemaynard · 2008-07-16 01:34 · Score: 1
  
  weakest GIS evar.
  
  --
  I saw it on Slashdot, it must be true!
Better Name by Anonymous Coward · 2008-07-15 11:24 · Score: 1, Funny

Yes, but the problem is that it's not just data that's lost; it's information. (Data and information are, after all, not the same thing.)
Therefore, I propose the following name:
"Data/Information Loss Database - Open Source" (DILDOS).
Sample conversation: "Hey, we've got a security breach! Looks like 10,000 accounts have been compromised!" "*sigh* Okay, pack it up and send it to the DILDOS, they'll know what to do with it."
Yup. Much better already.
No need to thank me, that's my job.
Between companies and idiots... by carp3_noct3m · 2008-07-15 11:27 · Score: 2, Insightful

The modern countries that rely so heavily on credit systems underestimate this vulnerability as a whole to the economy. With companies not taking the proper precautions, and Pvt. schmuckately looking at pr0n while online banking, there needs to be A) more awareness raised by the government(or anyone for that matter) B) stricter regulations for companies holding sensitive data, and hence stricter punishment. Im no expert of course, but that just a couple ideas. One thing I worry about though is somehow this whole mess is going to get turned into some 1984 shit were the government has to monitor all credit activity for "our own good".

--
"It's ok, I'm completely secure as long as my iron is off"
Data Loss Database? Been using it for years. by ancientt · 2008-07-15 11:43 · Score: 1, Offtopic

I've been using data loss databases for years, MSSQL, MySQL, MS Access, yup, data loss in all of them. I was quite disappointed in reading further to discover that they meant that a database of unwanted data sharing was being maintained instead of finding out where all my missing update queries went.

--
B) Eliminate all the stupid users. This is frowned upon by society.
1. Re:Data Loss Database? Been using it for years. by Anonymous Coward · 2008-07-15 12:47 · Score: 0
  
  right, the data wasn't lost - it was found, albeit by the wrong people.
2. Re:Data Loss Database? Been using it for years. by Ihmhi · 2008-07-15 13:01 · Score: 1
  
  That's the funniest flamebait/offtopic/troll I've read in a long time.
  
  --
  Random Thoughts From A Diseased Mind (Not For Dummies)
3. Re:Data Loss Database? Been using it for years. by K.+S.+Kyosuke · 2008-07-15 13:32 · Score: 1
  
  So the moderation system is in a dire need of an SQRT(-1) Funtopic Trollbait?
  
  --
  Ezekiel 23:20
4. Re:Data Loss Database? Been using it for years. by suricatta · 2008-07-15 15:11 · Score: 1
  
  Hahahah good one. When I read DataLossDB I actually thought it was referring to a new type of database that is designed to lose data automatically say if it hasn't been accessed in a while, sort of like how our long term memory works.
  
  I was trying to think up some usefull applications. But then I realised that you could set this up using a normal database with some triggers and some data purging tasks thrown in.
5. Re:Data Loss Database? Been using it for years. by cez · 2008-07-15 16:56 · Score: 1
  
  Not missing the joke... but just wanted to point out for those who don't know, attrition.org has been keeping track of "lost data" and who's lost it for years...
  Good for them to go main-stream with it ;)
  
  --
  Walk with Music;
Across the world?? by iminplaya · 2008-07-15 11:46 · Score: 1

I guess some people still believe the earth is flat. I know a few myself.

--
What?
1. Re:Across the world?? by Anonymous Coward · 2008-07-15 17:16 · Score: 0
  
  Hey, John SYDNEY McCain accepted that more than a decade ago, you'd think you could lay off.
It wasn't their first choice by Anonymous Coward · 2008-07-15 11:55 · Score: 4, Funny

"Global Open Access Theft Sharing Enterprise" was taken.
1. Re:It wasn't their first choice by Anonymous Coward · 2008-07-15 15:42 · Score: 0
  
  "Informative"??
  Wow. Mods are on crack today. "Funny", yes. :-)
DLDOS better not be lossy by salahx · 2008-07-15 12:21 · Score: 1

So if the Data Loss Database is a database of all the databases that have had data lost/exposed, if the Data Loss Database itself loses data, dose it list itself?
Now my head hurts
Missing the point by Anonymous Coward · 2008-07-15 12:33 · Score: 3, Insightful

The Attrition guys put a lot of work into the database, it's become an authoritative archive of privacy and data security breaches used extensively by researchers in the field. They'd been considering closing it down, like they did their defacement archive. This is good news and I'd expect slashdot to see it that way, dildos or not!
1. Re:Missing the point by tobiasly · 2008-07-15 13:21 · Score: 1
  
  And if I were a phisher, I'd set up my own "data loss database", complete with query screen where you can input your SSN, date of birth, mother's maiden name etc. to see if it's been "lost". How many idiots do you think I could catch with that one?
  Sometimes I really think I should use my mind for evil, there certainly appears to be lots of money in it...
who reports data loss here? by nx6310 · 2008-07-15 12:43 · Score: 1

When the US army raids my house in Baghdad and takes all my customers' records which I keep on my hard drive? Or should my client report me in that case?
1. Re:who reports data loss here? by Zorque · 2008-07-15 17:42 · Score: 1
  
  Why would they be raiding your house? Even in Iraq, usually you have to do something like kill a bunch of people before they do that.
2. Re:who reports data loss here? by nx6310 · 2008-07-16 09:15 · Score: 1
  
  in Iraq if you don't let snipers sit on your roof top to shoot people your considered anti collation. I have friends in jail for looking weird to some idiot soldier.
But who will log losses from *their* DB? by noidentity · 2008-07-15 13:25 · Score: 1

Will they also log losses from their DB in their DB, or will a meta-foundation do that?
I hope Youtube uses this Lossy Database by FoxconnGuy · 2008-07-15 14:37 · Score: 1

So Viacom doesn't get my private data.
loss - leakage by Anonymous Coward · 2008-07-15 22:33 · Score: 1, Insightful

I think that "data leakage" would be a better term for what this database represents. Loss implies that data is being destroyed.