Federal requirement to disclose database security breaches?
Fines and prison time are among the penalties envisioned under a proposed house bill. The requirement would be that businesses with database holding information on more than 10,000 people (or federal employees) would have to inform either the Secret Service or the FBI of a data security breach. (The maximum sentence would be five years.) Now, on my first read of this, I thought, well sure – any company should disclose the possible loss, theft, or breach of a database holding customer data. I still think that… but I don’t know that the focus of penalty is on the right shoulders.
I would certainly go along with heavy fines for failing to report a breach, but prison time? Shouldn’t that be reserved for the ones that actually break in and steal 10,000+ credit card numbers? For that matter, I do have a bit of the problem with the implication that it is more greivous that a single federal employees information is breached than 9,999 “civilians” (for lack of a better term…) And how is a business with less than 10,000 people supposed to identify Federal employees in their database to know that we need to report to the FBI that somebody stole 5,000 names and birthdates?
The Security fix has a story on the proposed bill… He raises another good point and that is the FBI having it’s hands full with cybercrime reports already. He goes on to really get at the issue. Cybercrime is not something that the US alone can solve. The havens for cybercriminal are worldwide and there are a variety of reasons, poverty, disdain for the U.S./West, etc. And until some of the factors that push people to cybercrime elsewhere, we will not get a handle on it here. They will be out of reach.
I don’t know if the proposed bill is the best solution to protection peoples private data. Like most things in politics it will likely go through a series of changes before it’s voted on and finalized. It will be interesting to see what threshold is held for “personal data”. That will determine if most EVERYONE that keeps a database of Donors or customers, contacts, etc… will be required to keep the FBI on speed-dial.
Popularity: 1% [?]
Related Posts - Wordpress 2.0.4 Update It has been a few days now, but I noticed that Wordpress 2.0.4 has now been released and is highly recommended due to the fixing of a few security issues. They also list a number of bugfixes as well. So, if you're running a site based on wordpress it's time......
- Thank you NC department of revenue... I heard on the local news last night that the North Carolina Department of Revenue has lost a laptop that had ~30,000 state taxpayers information on it. Social Security numbers/etc... The report I saw that the state has setup a hotline to "teach citizens about identity theft" and have sent......
- That's bad - data on Nuclear agency workers stolen... According to reuters data on US Nuclear Safety Administration employees (*some 1500) was stolen in a computer cracking incident. The NNSA is a semi-autonomous arm of the Energy Department and also guards some of the U.S. military's nuclear secrets and responds to global nuclear and radiological emergencies. Of course, this......
Related Websites - Double the Taxes for Self Employed Income and Social Security Wage Limits Ever since I started working as a summer intern, I have always been depressed to open up my check and see the amount of my salary that was going towards taxes. Currently, 29.2% of my salary goes straight to the government. The majority of my taxes are federal income taxes,......
- How Obama Might Affect Your Taxes And Personal Finances Barack Obama was voted the new president elect yesterday. Very early in the campaign, the number one issue changed from the war in Iraq to the slumping economy. Obama has preached change throughout his campaign and the most pressing issue that requires change is the economy. Additionally, Democrats hold the......
- Finding the Hard Truth on Your Federal Tax Burdens If you are a taxpayer (and barely a majority of working adults are), we are in the midst of a "perfect tax storm." First, we have entered the traditional "tax season" where accountants (such as my sister) put in lots of extra hours preparing returns while trying to keep their......
Similar Posts
- Thank you NC department of revenue…
- AT&T has info on 19,000 stolen
- Brian Krebs talks to the FBI on cybercrime
- Some companies unable to secure your data
- Ernst & Young loses laptop, exposes almost 250k hotels.com customers – database mayhem roundup