Equifax Data Theft -“Doctor Heal Thyself!” September 8, 2017
Posted by Chris Mark in Uncategorized.1 comment so far
I woke up this morning to the news that Equifax had experienced a data breach from Mid May through July of 2017 and affected data of 143 million customers. The data exposed includes: “…names, Social Security numbers, birth dates, addresses and, in some instances, driver’s license numbers. In addition, credit card numbers for approximately 209,000 U.S. consumers, and certain dispute documents with personal identifying information for approximately 182,000 U.S. consumers…” You know…the type of data someone can use to actually commit identity theft.
I used the handy “Equifax tool” (you should use it!) to find whether my information or my wife’s information had been exposed. Surprise! It had!…now, as a consolation prize I do get a free year of credit monitoring from (cough, cough) Equifax. The irony of this statement is palpable…Equifax has also provided “…additional information on steps consumers can take to protect their personal information.” This is akin to someone giving you Ebola and then saying: “Hey…I know I gave you Ebola but here are some things you should do to keep from…catching Ebola…” Thanks Equifax!
To make us feel better the CEO of Equifax (Rick Smith) stated: “We pride ourselves on being a leader in managing and protecting data, and we are conducting a thorough review of our overall security operations. We also are focused on consumer protection and have developed a comprehensive portfolio of services to support all U.S. consumers, regardless of whether they were impacted by this incident.” …What about the incident in 2015? Shouldn’t that have been a wakeup call?
If you are concerned that you might be a victim, please use this link to check. Then…ensure you ‘lock’ your credit reports so someone cannot open accounts in your name. This is much, much, mUCH, MUCH, worse than a payment card theft. With your social and other identifying info, someone can ‘steal’ your identity.
Thanks Equifax!!
RIP Sgt. Steve Perez…a true hero. August 29, 2017
Posted by Chris Mark in Uncategorized.add a comment
As a Texan in the greater Houston area I have been dealing with Hurricane Harvey for the past few days. I have seen amazing generosity from Texans and other Americans and, unfortunately, I have seen some who want to take advantage of those in need. Overall, I have witnessed amazing charity. I learned today that Sgt. Steve Perez of the Houston Police Department lost his life while trying to go to work in early Sunday morning. He was a victim of floodwaters. Sgt. Perez was a veteran of the HPD for 34 years and was heading into the storm as he said (according to his wife) “I have work to do…” Sgt. Perez tried for 2.5 hours to get to his location until he was overtaken by flood waters. I want to thank Sgt. Perez for his service and sacrifice. Our Heroes don’t always wear capes. Sometimes they quietly do their jobs for many years and are taken too soon. Thank you Sgt. Perez!! No doubt Heaven is a much safer place with you on patrol!
War Heroes, Counts, Magistrates, and Lunatics…thanks Ancestry.com! June 16, 2017
Posted by Chris Mark in Uncategorized.Tags: ancestry, ancestry.com, Andersonville, civil war, DFC, P-47, Relatives, revolution, union, War, WWII
5 comments
I grew up in a broken home and had little interest or knowledge of my genetic family when I was growing up. Until recently there were few ways to trace one’s lineage with any degree of accuracy. In 2010 I joined Ancestry.com. it was still pretty nascent and I didn’t get much value from the limited information available. Last week I had an epiphany and looked up the obituary of one of the grandparents with which I was familiar. It had just enough information that I started looking. I went back to Ancestry.com and BOOM! I was on fire! In the 7 years I was away from Ancestry.com there were volumes of new information added! In two days I found over 160 direct relatives. I had always assumed my relatives had come to the US like many Irish immigrants during the Great Famine of 1845-1852. I guessed (incorrectly) that my relatives were farming folk from Ireland. The real story is much more interested!
The first relative I looked up was my maternal grandfather Emery Harry Montgomery. He was a Colonel in the US Airforce (previously the Army Air Corps) and had served with distinction in WWII where he flew P-47s over Europe and was awarded 4 Air Medals and in 1944 earned a Distinguished Flying Cross! Colonel Montgomery was the CO of the 2nd Jet squadron in the US and was killed in 1958 while flying an F80. (more…)
“You Are the Weakest Link! Or Are You”- Guest Post by Dr. Heather Mark June 7, 2017
Posted by Chris Mark in Uncategorized.Tags: Breach, compliance, Data, Ethics, Heather, Mark, PCI DSS, security, technology
add a comment
The incomparable
Dr. Heather Mark (my wife…and compliance expert) has a new blog post…
“If you’ve been in security or compliance long enough (and by that I mean approximately a week), you’ve heard the old adage that our largest vulnerability are our people. Firewalls don’t just randomly open ports. Email clients don’t just decide to send proprietary and sensitive information to third parties. These are actions, sometimes deliberate and sometimes accidental, taken by the human assets within our companies, not the technological ones. Technology is not imbued with the ability to autonomously break laws or divulge sensitive information. Technology largely does what it’s programmed to do. People – these are the elements that cannot really be controlled or predicted. Of course, we can implement technology to mitigate the risk presented by human nature. But at the end of the day, a determined individual can still wreak a lot of havoc. This argument is often made just to make that point that we can’t be complacent. And to a very large extent, it’s correct. But I would posit that people can also be one of our biggest assets with respect to maintaining compliance and ethics programs.I watch a lot of what my husband refers to as “murder shows” – Forensic Files, 20/20, and the like. My favorite, though, is Dateline when the story is presented by Keith Morrison. He has a way of telling a story. Don’t believe me? I give you proof.”…Click here for more from Dr. Heather Mark’s Blog!
The “Deep Web” in Tactics & Preparedness Magazine May 15, 2017
Posted by Chris Mark in cybersecurity, Uncategorized.Tags: anonymity, dark web, deep web, edward snowden, Linux, NSA, TAILS, TOR
add a comment
Developed by the Naval Research Laboratory in 1994, The Onion Routing (TOR) protocol was originally designed to allow spies to communicate securely. It is this protocol that ushered in the “Deep Web” which enabled Edward Snowden to bypass the NSA using an operating system called TAILS. If you want to know more about the Deep web and how to gain access, please read my latest article in Tactics & Preparedness magazine.
Global Security, Privacy, & Risk Management 