Author Archives: Andy Green

More Companies under Red Flag Rule for ID Theft Protection

Posted on June 18, 2013

In 2004, Congress amended the 1970s-era Fair Credit Report Act (FRCA) to address the growing problem of identity theft. Under these adjustments to the FCRA, the FTC (along with other regulatory agencies) was asked to develop rules for preventing some … Continue reading

Posted in Compliance, Data Protection | Tagged , | Leave a comment

Metadata Matters, Part I

Posted on June 12, 2013

True or false: metadata can be used to discover important patterns and behaviors in social networks? This is as true now as it has been since the start of electronic communications: those whom you telegraphed and called, and more recently, … Continue reading

Posted in Big Data, Metadata | Leave a comment

Will Big Data Give Each of Us a Pop-Tarts Moment?

Posted on June 3, 2013

One of the under-appreciated points about Big Data is that as consumers we also act as producers. In each transaction, we contribute bits of analyzable data to the corporate information stockpile. Data hungry companies then draw non-obvious connections by mining … Continue reading

Posted in Big Data, Data Ownership | Leave a comment

Health Care Breaches: Top Sources of Dark Medical Data

Posted on May 28, 2013

One of the goals of the Health Information Technology for Economic and Clinical Health (HITECH) Act of 2009 was to spur adoption of electronic record keeping for what has been a paper-intensive sector of the economy. Realizing that the transition … Continue reading

Posted in Compliance, Secure Collaboration | Tagged | Leave a comment

What IT Departments Can Learn From the FBI

Posted on May 23, 2013

What do the FBI and your IT department have in common?  They both have to worry about data theft; specifically, the theft of intellectual property (IP). While your organization strives to keep IP out of the hands of the competition, … Continue reading

Posted in Data Ownership, Data Protection | Leave a comment

The Internet Delete Button

Posted on May 16, 2013

Compliance Update: EU Data Protection Regulations Postponed Again Over the past few months, I’ve mentioned that the EU’s Data Protection Directive is in the process of a major revision. The most controversial change to the DPD is the “Right to … Continue reading

Posted in Compliance, Data Protection | Tagged | Leave a comment

The Top 6 Exploits Used by Government Hackers

Posted on May 13, 2013

Yes, hackers can be spies. Stay calm, all the same rules still apply. Along with the rest of America, I read the headlines last week about the Chinese military hacking into US defense contractors’ computer systems. Though the words “cyber attack” take … Continue reading

Posted in Data Protection | Leave a comment

Path’s Debacle Sheds Light on Children’s Privacy Online

Posted on May 3, 2013

Over the last few years, the FTC has issued a string of complaints against social media companies for not living up to their advertised privacy terms. If you don’t honor online privacy while publicly saying you do, you’re guilty of violating some … Continue reading

Posted in Secure Collaboration | Tagged , , | Leave a comment

Personally Identifiable Information Hides in Dark Data

Posted on April 30, 2013

To my mind, HIPAA has the most sophisticated view of PII of all the US laws on the books. Their working definition encompasses vanilla identifiers: social security and credit card numbers, and all the other usual suspects. With the additional … Continue reading

Posted in Data Protection | Tagged , , | Leave a comment

The State of the Breach

Posted on April 24, 2013

By coincidence, Verizon’s Data Breach Investigations Report (DBIR) for 2012 was released this week along with the results of our Privacy Survey. So it’s a good  time for a quick tour of the state of the breach. In reviewing this … Continue reading

Posted in Data Protection | Tagged | Leave a comment

Twitter Feed

    Follow @Varonis on Twitter