You don’t need a costume to be scary at Halloween

The ghosts, goblins and ghouls are out in full force as All Hallows’ Eve approaches today. As fun and scary as Halloween can be, there are still plenty of other scary happenings going out in the world of data security.

Recently there have been plenty of reminders, from my perspective, about the importance of data security, and I continue to be amazed at how many organizations aren’t encrypting sensitive information. Two of the most recent examples come from the U.S. (Via SC Magazine):

The theft of two laptops has led to a compromise of personal information, including Social Security numbers, for more than 700,000 patients of California-based AHMC hospitals… Thieves broke into a sixth-floor administration office in Alhambra and stole two hospital laptops.”

Sadly, it’s taken this circumstance for an encryption policy to be implemented. But the damage has already been done, and if you’re a person that’s at risk because the data has been stolen, that’s a pretty scary situation.

In the other instance, “Hundreds of students at Denver’s Eagleton Elementary, Castro Elementary and Munroe Elementary schools may be at risk after a thumb drive containing information on the pupils was stolen from a school nurse’s car.”

In both cases we see examples of laptops that aren’t encrypted or removable media, such as USB keys, not being encrypted. Two fundamental tenets of data security as we see it – full disk encryption should be the foundation of your device security followed by removable media encryption.

Both organizations now have to answer to the people whose information is now exposed and deal with the reputation and financial implications of such an event; something that could’ve been easily prevented by having a data encryption policy in place.

In any event, have a happy Halloween and safe trick-or-treating!

Previous Post
Almost Famous
Next Post
Keep Moving Forward

Related Posts

WinMagic Certified Secure Validation

Today SanDisk announced their new SSD offering, the X300s – it’s their first drive to feature encryption capabilities. As part of this announcement, WinMagic also announced that SanDisk is the first drive partner we work with to complete the WinMagic…
Read more

Keeping the random in RNG

Earlier this week my colleague Garry talked about his experiences attending the TCG conference recently and the ‘hallway talk’ about the NSA. It raised some good observations and had me thinking about a recent blog from the NY Times about…
Read more

Enlightening Conversations

Last week I attended an event in Seattle; it was a small, intimate group setting where a number of vendors talked about IT security with key business leaders. It was an interesting day full of discussion around how to secure…
Read more

Why Apple Matters in The Enterprise

It’s always interesting to get into the Mac vs. Windows debate as it relates to the Enterprise. For the longest time, the corporate IT stack was predominately Windows-based, but not any more. With the introduction of the iPhone and iPad,…
Read more

Leave a Reply

Your email address will not be published. Required fields are marked *

Fill out this field
Fill out this field
Please enter a valid email address.

Menu