Brown's Confidential Information in 2008 – Are YOU at Risk?
Brown's IT Security Group completed its second biennial risk assessment process in late 2007. The data gathered will assist IT Security as it focuses on top risk areas and develops specific training and awareness activities for the coming year.
We attempt to get data from all areas within Brown – including small departments and centers. And we certainly appreciate all of your cooperation as we work to pull all of this data together! « more...»
ID Thievery Up Close
You feel this loss of control that someone’s out there pretending to be you and doing things in your name, that can come back to haunt you. (Tom Karr, ID Theft victim).
Tom Karr's loss - of identity, money, time and a feeling of control - is sadly all too familiar. Over 8.3 million American adults (3.7 percent of all American adults) were victims of identity theft in 2005 alone, according to a recently released report* by the Federal Trade Commission (FTC). Based on adults surveyed:
- 3.2 million (1.4 percent), experienced misuse of their existing credit card accounts.
- Another 3.3 million (1.5 percent), experienced misuse of non-credit card accounts.
- 85% of all ID theft victims reported that one or more of their existing accounts had been misused. « more...»
Managing Restricted Information
Despite your best precautions, you could join the growing ranks of those who've experienced compromised, lost or stolen computers. The loss becomes big news*, however, when personal information is jeopardized, as in these recent examples:
- A laptop with personal information on hundreds of thousands of employees is stolen from an employee's car, with files for thousands of past and present employees containing their Social Security numbers (SSNs), home addresses, phone numbers and dates of birth. « more...»
Farewell to Our ISO
After four years as Brown's Information Security Officer, Connie Sadler will be leaving her position next month to fill a similar role at the Stanford University Medical Center in Palo Alto.
During her time at Brown, it was Connie's mission to heighten security awareness - at the personal, departmental and campus levels - providing the tools, information and support. Her accomplishments include developing a set of computing policies, reaching out and partnering with departments, instituting a risk assessment process, teaching classes on the proper handling of confidential information, and initiating this newsletter.
Thanks so much, Connie, for all you have done to make Brown a safer place for computing. You will be missed!
What's Your Excuse?
Here are the "Top Ten Reasons Why People Don't Have Better Computer Security", according to the October issue of OUCH!, from the SANS Institute.
10. I don't have anything important on my computer.
9. My computer is brand new. It came with all the security stuff on it.
8. My IT department takes care of everything, so I don't have to worry about it.
7. I'm positive my anti-virus program is working, and it will take care of the worst stuff.
6. I have a hardware firewall; nobody can get into my computer.
5. Anti-virus and anti-spyware programs slow my computer down too much.
4. I only open attachments from people I know.
3. I don't use the same password for all of my files.
2. Who is going to break into MY computer?
1. I'm planning to install all the security stuff as soon as I get caught up on my work.