Your information doesn’t leave when you do

Adam at Emergent Chaos brings to light some interesting information on when customers have had enough with data breaches.  Turns out you need three successive breaches to come close to a 100% alienation rate.  What I doubt most people realize is that this isn’t the end of the risk from that company, since banks are required to keep your information for a number of years by law.   PCI is only going to help if businesses learn enough to protect their networks, rather than just marking off check boxes on a list.
So even though you may have already canceled your TJX credit cards, you’ll be vulnerable to compromises of their network for at least 7 years, probably more.  I can’t imagine it’ll be fun the receive a mail stating that your data has been compromised from a card you canceled long ago.  Guess it can’t be any worse than learning about your records being lost by the Veterans Administration.
Technorati Tags: security, PCI, breach, credit card

Read more at netsecpodcast@mckeay.net (Martin McKeay)

Related posts

• Zune receives a scathing review from the Chicago Sun-Times (0)
• ZUI and the Skype PKI (0)
• ZIP then, RAR now. What’s next? (0)
• ZERT patch (0)
• Zero-day de-mystified (0)