FDIC Incurs 54 Confirmed and Suspected Breaches in 2 Years

FDIC Incurs 54 Confirmed and Suspected Breaches in 2 YearsOffice of Inspector General takes the Federal Deposit Insurance Corporation to task for its response to breaches.Cyber attackers waged 54 suspected and confirmed breaches on the Federal Deposit Insurance Corporation (FDIC) from 2015 to 2016, but the agency took an average of more than nine months to notify the estimated 113,000 individuals who were potentially affected, according to a recently released report by the FDIC Office of Inspector General.
The Chairman of the Senate Committee on Banking, Housing, and Urban Affairs called for the FDIC audit out of concerns raised by the data breaches that occurred between January 2015 to December 2016.
In conducting the sample audit, which reviewed 18 of the 54 suspected and confirmed breaches, the Office of Inspector General delved into the FDIC’s processes for evaluating potential risk to individuals’ personally identifiable information following the breaches, its notification processes, and the services that it provided to individuals post-breach.
“The implementation of these processes was not adequate,” the report states. The Office of Inspector General found the FDIC failed to complete key breach investigation steps, adequately document key assessments and decisions, and track and report key breach response metrics, according to the report.
Read more about the FDIC report here.
Security-Frontline-安全前线
  

人人都在思考我们的商业竞争环境问题,环境是人们组建的,所以最终还是人员的问题,加强组织内部人员的商业道德建设和信息安全保密观念,对于提升企业的长久竞争力,大有裨益。
部署技术系统容易,关键要有合法的理由以及合规的流程,一般来讲,信息系统和数据都属于公司,它们应该被用于工作,公司拥有监控基于网络系统的工作情况和过滤不利于工作的内容的权限。

猜您喜欢

陕西省信息网络安全协会培训中心在西安挂牌
适用于所有行业的HSE在线培训课件
网络安全法普法宣传 004《网络安全法》的突出亮点
美元/日元盘中持稳 市场谨防朝鲜挑衅行动
LETALPE LEXTAI
安全教育是智能安全的核心要素