Shark Bait

Knowledge Centers

Operating Systems

Networking & Internet

Mobile & Wireless

Security

Storage

Business Intelligence

Servers & Data Center

Computerworld Reports

Industry

See your link here

C. J. Kelly

A Day in the Life of an Information Security Officer

Put 'em behind bars!!

5 comments

IT TOPICS:Security

I was thrilled to see this story come out today! I was recently a victim of ATM/Visa card theft. Not theft of the card itself, but theft of the number to purchase items over the Internet. At least a thousand dollars left our bank account this week. It has not been a fun week. But, I am glad to see that progess is being made by the FBI and Secret Service in catching the thieves.

What I can't wait to find out is any of this, or can any of this, be linked to Al Qaeda? Bringing down the financial infrastructure of the United States by just robbing every day citizens of their money, who in turn would force the banks to reimburse them because of a "security guarantee", would be the perfect crime.

Email this

Digg this

What People Are Saying

Add new comment

I seriously hope that the

Submitted by Anonymous on April 3, 2006 - 3:08 A.M.

I seriously hope that the "Al Qaeda" comment was a joke. It's just rediculous. Conspiracy theories apart, banks and financial institutions are legally obliged to offer secure services to their clients. Think of it this way, if four masked men hold up your bank and run off with 2 million dollars, will it be cause enough for alarm to make you withdraw your money and change bank? No, so why would computer fraud? If anything the fingerprints are easier to find.

One possible improvement on security on the internet in general that I would suggest lies at the basis. More control on the sale / resale of domain names and IP address. In many cases (and in this case) the theifs redirect the users to a site under their control and request sensitive information. Who owns this site? Who owns the IP address? These should be the people responsible. But it usually ends up pointing to the CEO of some multi-national company. Later discovered to be a false registration. I think register.com and the like have quite a few questions to answer.

Report this comment

Banks and other financial

Submitted by CeeBee on March 31, 2006 - 8:08 P.M.

Banks and other financial institutions have a responsibility to protect their customers personal information from unauthorized access or abuse. The problem is most of these businesses are comfortable with lax controls and policies and have not been held publicly liable for their negligence.

But if customers are made aware of these lax controls they will demand data security best practices and start doing business with companies that can readily demonstrate due diligence.

Message to Consumers: VOTE WITH YOUR DOLLARS! Only do business with companies that care for your personal information as if it were their own. Ask for a copy of their data security policy. If they don't have one, insist they get one in place or possibly lose you as a customer. It works!

Message to CEOs, CIOs and Business Owners: Data security is not just for the IT department, it's EVERYBODY'S JOB. Be proactive about your data security posture or face lawsuits over a security breach that could have been avoided or at least minimized damage. Your competitors who DO employ data security best practices will eventually take your customers.

Message to Media: Don't be afraid to tell the public how important data security due diligence is for businesses and government agencies to practice.

Report this comment

Somebody cut me off in

Submitted by SysAdmin/Babysitter on March 31, 2006 - 12:53 P.M.

Somebody cut me off in traffic today. At the moment, I wanted to have them carted off and thrown under the jail for inconveniencing me. However, other than a slight adrenaline rush- there was no damage.
And as in my case, you suffered no real damage.
You are probably better off than you were in that you are actually monitoring your transactions with all of your financial institutions in a more diligent manner.
You just received a 'wake-up' call. And, your bank suffered the loss.
Welcome to the real world.
Remember, "time wounds all heels'.
Eventually they will get caught.
Life is easier when YOU don't have to punish ALL the evil-doers!!!!!
Let your bank get 'em...............

Report this comment

The perfect crime? Maybe.

Submitted by Anonymous on March 30, 2006 - 1:41 P.M.

The perfect crime? Maybe.

A threat to the US economy? I doubt it.

Let's assume, for the moment, that all the accounts compromised belinged to one bank (which they did not). For sake of argument, let's assume that it is Bank of America. In 2005, BofA reported revenues of 57 billion dollars and assets of 1.3 trillion (their 2005 financial report is on their Web site).

If every one of those 1 million accounts got hit for a thousand bucks, as you did, BofA would lose a billion dollars -- a noticeable amount, I'm sure, but hardly enough to destabilize the financial infrastructure of the United States.

Bottom line? Stealing modest sums from a lot of consumer accounts would probably harm the banking system by destroying consumer confidence -- but I don't think the actual financial loss would be unbearable to the financial institutions.

Report this comment

I agree! "The actual

Submitted by Anonymous on March 31, 2006 - 10:31 A.M.

I agree!

"The actual financial loss would not be unbearable to the financial institutions", because they wouldn't be bearing the costs for long. If we think for a minute that anyone of these financial institutions is going to bear any loss alone, we're fooling ourselves. Their investors and their various boards will not stand for these kinds of losses and I'm not talking about the hypothetical losses offered in your argument. Regardless of where the fault lies, the consumer ultimately will pay for the loss. Destabilize the financial infrastructure of the United States, maybe not. But it's going to create a lot of hardship for the consumer. It's all about where you fall in the financial food chain.

Report this comment

Google Dashboard: Convenient, useful, but no big deal

Web filtering internationally, part 1: China

The fobbit

Unlock/jailbreak new iPhone 3G software with #blackra1n app

LIVE Nov 10, 2009 12:00 PM ET

Architecting Business Intelligence Applications for Change: The Open Solution

LIVE Nov 12, 2009 02:00 PM ET

The State of PCI DSS Compliance at Organizations Today
Download this resource today!

Managing Secure File Transfer to Save Time, Money and IT Resources
Learn how companies are using innovative technology to overcome these challenges and improve user productivity by offloading e-mail attachments and replacing FTP with...

Can Heuristic Technology Help Your Company Fight Viruses?
What is Heuristic Technology and how can it help safeguard your business against viruses? Learn more.

Security Convergence Equals Network Security Cost Savings
Listen to IBM Internet Security Systems' take on network security convergence.

Why Email Must Operate 24/7 and How to Make This Happen
Learn how to avoid an email outage by implementing a hosted email continuity solution.

Lower the Cost and Complexity of a Mobile Workforce through Automation
Download This Resource Now!

All White Papers | All Webcasts

Computerworld Reports

8 Questions To Ask About Your Intrusion-Security Solution

Computerworld Technology Briefings IT Service Management

Computerworld Briefing - Analytics: The Art and Science of Better

All Computerworld Reports

Receive the latest technology news and information.

	Computerworld Daily News (First Look and Wrap-Up)
	Computerworld Blogs Newsletter
	The Weekly Top 10

View all newsletters

* E-mail Address:

* Industry:

* Job Title:

* Company Size:

* Country:

* State:

I would like to receive offers via e-mail from Computerworld partners.

C. J. Kelly's Archive

IT Topics

Sponsored Links

Play NetApp's New Data Defense Game.

How Do You Rank as an Innovation Leader? Download Recent Study.

Play NetApp's New Data Defense Game.

Extraordinary times demand Brocade Extraordinary Networks.

No Payments for Up to 6 Months on Orders over $500.

NetScaler VPX : Harness the Power of Virtualized Web App Delivery

64-page prescriptive guide to security, compliance, and IT operations.

Streamline IT Costs. Boost Performance with WAN Optimization

Enterprise Network & Server Monitoring Software. Cross over to Traverse...

Keep your IT expertise up to date. Join the Intel Premier IT Professionals.

Crystal Reports Server: More options. Not more money.

Parallelism is not just for HPC. Create rich apps from desktop to device. Get the eval.

Tolly Performance Report "Citrix NetScaler with nCore Outperforms F5 BIG-IP"

Save up to 61% plus Free Cheesecake

Find IT jobs in the Healthcare industry on Dice.com

With the NEW KODAK i700 Series Scanners get full speed at 300dpi!

Not All QSAs Are Created Equal: What You Should Know Before You Buy

The arrival of Serial Attached SCSI (SAS) marks a new era in storage scalability

The AMD Virtual Experience Virtual Trade Show

New DW Options and Price Points. View Teradata Platform Family Data Sheet.

See how AT&T can help protect your network.

3 Innovations. 3 Free Downloads. Free trials of Windows 7, Windows Server 2008 R2 and Exchange Server 2010.

Take the Netezza TwinFin TestDrive!

Citrix NetScaler with nCore Outperforms F5 BIG-IP - Learn More

New Analytical Platform Options. Download Data Sheet and More.

Get more enterprise mobility value for up to 25% less.

Unified Communications: Thoughts, Strategies and Predictions. Join the discussion.

NYUs M.S. in Management and Systems. Offered Online and On-site.

Increase UPS efficiency without sacrificing protection

Crystal Reports Server: Single server access to reports & dashboards

Create new opportunities. See business making progress now

ESET NOD32 with ThreatSense(R) - Get your free trial now!

Looking to add Unix/Linux functionality to Windows?

Join the conversation about the hottest IT trends with Computerworld on Twitter.

ITwhitepapers.com - Access thousands of white papers on 300+ technical topics.

Leverage Your Cisco infrastructure for Superior Application Performance

Learn about the AMD Virtual Experience

Introducing: Project Icebreaker

About Us Advertise Contacts Editorial Calendar Help Desk Jobs at IDG Privacy Policy Reprints Site Map

CIO

Computerworld

CSO

DEMO

GamePro

Games.net

IDC

IDG

IDG Connect

IDG Knowledge Hub

IDG TechNetwork

IDG Ventures

IDG.net

InfoWorld

ITwhitepapers

ITworld

JavaWorld

LinuxWorld

Macworld

Network World

PC World

The Industry Standard

Copyright © 1994 - 2009 Computerworld Inc. All rights reserved. Reproduction in whole or in part in any form or medium without express written permission of
Computerworld Inc. is prohibited. Computerworld and Computerworld.com and the respective logos are trademarks of International Data Group Inc.

Put 'em behind bars!!

What People Are Saying

I seriously hope that the

Banks and other financial

Somebody cut me off in

The perfect crime? Maybe.

I agree! "The actual

Related Posts

Today's Top Stories

Hot Posts

Recent Comments

White Papers & Webcasts

Computerworld Reports

Newsletters

C. J. Kelly's Archive

IT Topics

Sponsored Links