Computerworld
Quick Menu
Search



Ads by TechWords

See your link here


Subscribe to our e-mail newsletters
For more info on a specific newsletter, click the title. Details will be displayed in a new window.
Finance
Security
Computerworld Daily News (First Look and Wrap-Up)
Computerworld Blogs Newsletter
The Weekly Top 10
More E-Mail Newsletters 
Computerworld 2007Subscribe to Computerworld
40 years of the most authoritative source of news and information for IT leaders.

Recent breaches raise specter of liability risks

Landmark lawsuits are on the horizon, predict analysts
Jaikumar Vijayan   Today’s Top Stories   or  Other Privacy Stories  
 

Sign up to receive Cybercrime and Hacking Resource Alerts

May 31, 2002 (Computerworld) -- Organizations that fail to show due diligence in protecting their data assets face a real risk of legal problems in the not-too-distant future, analysts said.
The renewed caution comes in the wake of reports this week that hackers broke into a California state personnel database and gained access to financial and confidential information on all 265,000 state government employees, including that of Gov. Gray Davis.
Incidents like this one and the recent theft of more than 13,000 confidential records from Costa Mesa, Calif.-based Experian, a major credit reporting agency (see story), are shining the spotlight more brightly than ever on liability issues for companies doing business over the Internet, warned Michael Rasmussen, an analyst at Giga Information Group Inc. in Cambridge, Mass.
"The whole issue has gotten to a scale where companies face a real risk of legal liability," he said. "There are going to be landmark cases where people are going to be suing other people. That is what is finally going to get the attention of companies."
In the California incident, a hacker broke into a database housed at the state's Stephen P. Teale Data Center in Rancho Cordova and accessed names, Social Security numbers and payroll information of state employees ranging from office workers to judges.
The break-in occurred April 5 and was discovered by the state controller's office May 7. But it wasn't disclosed to the public until May 24. The handling of the incident has provoked criticism from the California Union of Safety Employees (CAUSE), which criticized state controller Kathleen Connell for the delay in informing victims that their personal information had been compromised.
"It is an outrage that the controller herself has been negligent in recognizing the peril posed by this high-tech invasion of privacy," CAUSE President Alan Barcelona said in a statement.
Legal ramifications
Connell's office refuted the criticism and said it had acted swiftly in asking the Sacramento Valley Hi-Tech Crime Task Force to conduct a criminal investigation.
"It is the Teale Data Center and not the state controller's office that is solely responsible for the security breach, and that agency has accepted full responsibility," Connell's office said in a statement.
Incidents such as these show why companies need to ensure they are following best practices around security, said Rick Fleming, a vice president at Digital Defense Inc., a San Antonio-based security consultancy. "It won't take too many more cases of folks enduring identity theft or financial hardship for somebody to start suing," he warned.




Print this Story Send Us Feedback E-mail this Story Digg! Digg this Story Slashdot this Story
"Need help sorting through the hype of cloud computing? Here's some IDC research on the benefits, barriers -- and what..." Read more...
Read more Security posts or See all Blogs
Update: AMD spins off manufacturing to cut costs, raise funds
IBM launches Bluehouse, a Facebook for business
iPhone grabs top smart phone spot
More top stories...
Microsoft's (un)secret weapon for winning the BI battle
Microsoft scales out SQL Server 2008, wants to 'democratize BI'
Oracle tries to step up on high-end databases
Too much junk food, too little exercise and a 24/7 tether to technology? Your body ain't happy, friend. Let us count the pains.
Instruments on the surface of Mars have detected falling snow that is likely evaporating before it reaches the planet.
One positive development stemming from the collapse of Wall Street may be a boost in interest in computer science and IT careers among students who were previously interested in financial services jobs.
Getting new software installed on Linux doesn't have to be hard, but it can differ depending on what you're installing.
Reviews, analyses, how-tos, visual tours, hot issues and predictions about Microsoft's new OS.
Four years from now, the IT field will be a vastly different place. Will you be ready?
All Zones
Application Performance Zone
Business Continuity Zone
The File Data Management Zone
Security Management Zone
The SAS Zone
Business Intelligence and Analytics Zone
Windows Protection Zone
The Enterprise Search Zone
Software as a Service Zone

Ads by TechWords

See your link here
From Laggard to Leader: Transforming the Data Center
From Laggard to Leader: Transforming the Data Center
Register for this complimentary webcast today!
Go to the webcast 
Computerworld Executive Bulletin: Building a Robust Antivirus Defense
Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs.
(Source: MessageLabs) Antivirus software alone isn't enough to prevent today's speedy, sophisticated virus attacks. Security managers should consider multitiered approaches that include behavior scanning, appliances that check e-mail for worms, and restricting user access to dangerous Web sites. Download this Executive Bulletin (a $49.95 value) for free, compliments of MessageLabs, to learn more.
Download this executive briefing download
White Papers
Read up on the latest ideas and technologies from companies that sell hardware, software and services.
Putting the Right Model in Place to Better Balance IT Supply and Business Demand
Six Project Metrics Every CIO Should Know for Application Delivery Success
Project Portfolio Management - Boost the value of IT
View more whitepapers 
Intercept Spam & Viruses
Download this whitepaper to learn how to outsmart spam & viruses, compliments of MessageLabs.
(Source: MessageLabs) Register for a complimentary 30 day trial of MessageLabs' new managed Anti-virus and Anti-spam security solutions. MessageLabs guarantees complete protection against all known and unknown email threats. By providing 24 hour support, your business can increase productivity and decrease risk.Register now for a complimentary trial and receive a free datasheet.
Download this white paper go