Content by Howard Anderson

Five Application Security Tips

Howard Anderson  •  May 30, 2012

Many organizations aren't devoting enough resources to ensure that applications for mobile devices are secure, says security expert Jeff Williams. He offers five tips for adequately addressing mobile application security.

Obama Unveils Mobile Tech Strategy

Howard Anderson  •  May 23, 2012

The Obama Administration has unveiled a "digital government" strategy that requires federal agencies to launch new mobile applications. The strategy calls for standardized implementation of privacy controls.

Post-Breach PR: Lessons Learned

Howard Anderson  •  April 17, 2012

One of the biggest mistakes companies make after a major data breach is communicating with the news media, consumers and others before all the facts are clear, says attorney Ronald Raether.

Privacy: Changing a Corporate Culture

Howard Anderson  •  April 11, 2012

Creating a "culture of compliance" that emphasizes the importance of privacy requires far more than "management by committee," says change management specialist Jan Hillier.

800,000 Child Support Records Lost

Howard Anderson  •  March 30, 2012

Backup storage cartridges containing personal information on about 800,000 adults and children in California's child support system were lost during shipment, state officials say.

TRICARE Breach Victims Report Fraud

Howard Anderson  •  March 15, 2012

In the weeks following last year's TRICARE health information breach, some of the 4.9 million beneficiaries affected became victims of financial fraud, an amended class action lawsuit states.

Experiment Reveals Smart Phone Risks

Howard Anderson  •  March 13, 2012

A clever experiment involving 50 "lost" smart phones highlights the potential risks involved if mobile devices are not adequately protected.

What Should CISOs' Priorities Be?

Howard Anderson  •  March 1, 2012

What do executives at RSA, eBay, USAA and Accenture have to say about the top priorities for information security professionals? Read on to find out.

A Framework for Vulnerability Reports

Howard Anderson  •  February 29, 2012

A consortium of eight major information technology companies is continuing development of a free framework designed to make it easier to exchange information about security vulnerabilities.

After a Breach: 3 Lessons

Howard Anderson  •  February 1, 2012

Organizations that have experienced a breach report that three lessons they learned were to limit the amount of personal information collected, limit sharing data with third parties and limit the amount of data stored, a new survey shows.

Zappos Breach Highlights Storage Issue

Howard Anderson  •  January 20, 2012

The recent breach that affected 24 million customers of Internet retailer Zappos.com should lead others to consider how much client information to store, says cybersecurity expert Fred H. Cate.

Tips for Encrypting Mobile Devices

Howard Anderson  •  January 11, 2012

To help prevent breaches, mobile devices should be encrypted even if storage of sensitive information on them is prohibited, says security expert Melodi Mosley Gates.

When Does HIPAA Apply to Banks?

Howard Anderson  •  January 9, 2012

A rule setting streamlined standards for electronic funds transfers in healthcare leaves some privacy issues fuzzy. But pending HIPAA modifications could provide clarification.

Outrageous Behavior on Facebook

Howard Anderson  •  January 5, 2012

Outrageous Facebook behavior by a contractor at a California hospital offers an eye-opening reminder about the need for a zero-tolerance policy when it comes to privacy violations.

BYOD: How to Minimize Risk

Howard Anderson  •  January 4, 2012

What can information security leaders do to minimize the risks involved in enabling staff members to use personally-owned tablets, smart phones and other mobile devices for business purposes?