pii » Musings on Database Security

Friday, June 8th, 2007

Chronicle of a Breach Foretold

About a month ago I posted about breaches at educational institutions, and suggested that rectifying the problem could start by simply not hoarding PII (personally identifiable information) unnecessarily.
Today I read about this breach at Northwestern University (not the first data breach for them) where social security numbers of 4,000 individuals may have been compromised, including [...]

1 Comment » - Posted in breach, privacy, universities by Slavik

Tags
bind_variables breach breach-notification compliance conference database-monitoring database-security database_security DBA educational_institutions hedgehog hipaa insider threat insider_threat intrusion monitoring MS SQL Server off-topic Oracle oracle_database_security oracle_security patching PCI Personal personally_identifiable_information pii presentation privacy regulatory-compliance sarbanes-oxley sb1386 security segregation_of_duties social_security_numbers SQL injection sql_injection technical technical tips TJX ukoug universities user identity visa vulnerability webcast
Categories
- breach
- compliance
- credit cards
- DBA
- encryption
- insider threat
- Java
- monitoring
- MS SQL Server
- Oracle
- OUG
- patching
- PCI
- Personal
- privacy
- sb1386
- security
- SQL injection
- technical tips
- TJX
- Uncategorized
- universities
- user identity
Blogroll
Meta
August 2008

M T W T F S S

« Jun

1 2 3

4 5 6 7 8 9 10

11 12 13 14 15 16 17

18 19 20 21 22 23 24

25 26 27 28 29 30 31

August 2008
M	T	W	T	F	S	S
« Jun
				1	2	3
4	5	6	7	8	9	10
11	12	13	14	15	16	17
18	19	20	21	22	23	24
25	26	27	28	29	30	31

Musings on Database Security

Friday, June 8th, 2007

Chronicle of a Breach Foretold

1 Comment » - Posted in breach, privacy, universities by Slavik

Tags

Categories

Blogroll

Meta