Even if your organisation takes every possible precaution to protect its data, a security breach is often inevitable. What do you do if it happens? Mike Mullins offers some pointers for notifying those affected.
News broke recently about one of the largest known security breaches at a university. A database break-in at the University of California, Los Angeles has reportedly exposed the private information of about 800,000 people.
While this is the latest in a long line of similar stories, don’t let the huge number of potential victims sway your attention. When it comes to security breaches, it’s important to remember that old adage about quality vs. quantity.
Data breaches aren’t just about a hacker breaking into a network and stealing information. In fact, they come in all shapes and sizes:
* A data breach can occur with a lost or stolen laptop that has someone’s social security number.
* A data breach can occur with a lost BlackBerry that has personal information about employees or customers.
* A data breach can occur with a fax that includes financial information that’s thrown away instead of shredded.