From: David Shettler (daveopensecurityfoundation.org)
Date: Sat Jan 24 2009 - 13:05:19 CST

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

So many stories pass through our news feed readers every day regarding
identity theft and fraud, but many of them we don't feel qualify as an
"Incident".

We tend to have a hard time adding incidents involving "So and So was
arrested for stealing 3 people's credit cards...", but we understand
that some people might want to see the frequency with which this sort
of thing happens. We have a tough time adding "Skimmer" breaches as
well, unless the skimmer was installed fraudulently by an insider. We
certainly feel that skimmers are a problem, but whose fault is it when
one goes unnoticed for an hour or two? Gray area, and we like to
avoid Gray areas. In addition, we don't very often add incidents such
as the recent "Monster.com" breach. The Monster.com breach did not
appear to involve data that would trigger any US breach notification
law that we know of, and as such, we tend to omit incidents like it.

And so the Blotter is born. We moderate the entries into it, many of
the entries come from the Daylife API, many from our own manual entry
after seeing something cross our news readers. We'll soon enable
users to post their own finds, and make the whole thing searchable,
maybe some statistics, etc. but for now...

Check it out: http://datalossdb.org/blotter

Email any feedback you might have to curators
_______________________________________________
Dataloss Mailing List (datalossdatalossdb.org)

Tenable Network Security offers data leakage and compliance monitoring
solutions for large and small networks. Scan your network and monitor your
traffic to find the data needing protection before it leaks out!
http://www.tenablesecurity.com/products/compliance.shtml

• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]