Slashdot Mirror

← Back to Stories (view on slashdot.org)

Data Breach Notices Show Tip of the Iceberg

Posted by kdawson on from the data-diving dept.

d2d writes "The Data Loss Database has released a new feature: The Primary Sources Archive, a collection of breach notification letters gathered from various state governments as a result of data breach notification legislation. The documents include breaches that were largely unreported in the media, many of which are significant incidents of data loss. This lends credence to the iceberg theory of data-loss reporting, where many incidents never break the surface. Now, thanks to the Open Security Foundation, we can 'dive' for them."

4 of 50 comments (clear)

  1. Some highlights by alain94040 · · Score: 5, Informative

    Some of my favorite highlights from recent incidents (I know, I shouldn't RTFM):

    Names and Social Security numbers of at least 250,000 found through search engine
    Date: 2008-12-02
    Organizations: Florida Agency for Workforce Innovation

    I guess there are many different ways you an innovate...

    Social Security numbers of 341 posted on web
    Date: 2008-12-04
    Organizations: Economic Research Institute

    If it's for research, then it's ok to post on the web...

    Stolen laptop contains names and Social Security numbers of "several thousand " employees
    Date: 2008-12-11
    Organizations: Hewlett-Packard

    If you thought only small time loser organizations like the first two on my list where subject to embarrassing data loss, that one would set you straight.

    --
    http://fairsoftware.net/ -- Software Bill Of Rights

    1. Re:Some highlights by TubeSteak · · Score: 4, Insightful

      The problem with data loss is that it isn't a localized problem.
      A loss/breach in California can screw over people living in Maine.

      Seems to me like a situation that will sooner or later be ripe for Federal regulation or oversight.

      --
      [Fuck Beta]
      o0t!
  2. Easy fix. by girlintraining · · Score: 4, Funny

    We just need to somehow convince people that data is like a young blonde, attractive, girl. I'll even give you a sample police report:

    Yesterday evening at 5:04pm, a young and attractive blonde female database was pushed into a UDP connection, which fled the scene shortly after...

    --
    #fuckbeta #iamslashdot #dicemustdie
  3. Too many notices! by Benjamin_Wright · · Score: 4, Insightful

    Data breach notices have a scalability problem. As the number of notices soars, we need to better define what is a serious breach and what is not. Otherwise, the public drowns in breach notices, many of which are insignificant. --Ben http://hack-igations.blogspot.com/2007/12/does-lost-tape-equate-to-lost-data.html

    --
    Benjamin Wright, Dallas, Texas, benjaminwright.us