Late yesterday CNET reported that Google’s hosted service JotSpot (a wiki) exposed user names and email addresses openly on the Internet.
Read the CNET article: http://news.cnet.com/8301-1009_3-10079805-83.html?tag=newsEditorsPicksArea.0
By itself, this really isn’t a big deal beyond the fact that it was Google that had the problem.  But it does raise a concern about the security of hosted apps.
People [...]

Many people ask whether data loss prevention is a lost cause because of its perceived complexity.  Just today I was speaking with a reporter about the technology and one of her first questions was, “how long does it take to get up and running.”  I get this question often and I always preface my response with, “well, [...]

First off, I would like to take a moment to congratulate myself for posting my second Tuesday’s Tip.  I know…. it’s not a big feat.  But sometimes the small milestones can be really meaningful, something I’ve recently learned while watching my son in his first 18 months.  And now for Tuesday’s Tip…
I’ve been working with [...]

It’s pretty hard to turn on the TV or visit a news site without reading about our faltering economy.  So why should my blog be any different, except to provide some perspective on its impact to data loss (of course).
Last Friday I spent some time speaking with a reporter for a story he was working on [...]

A CISO posted an interesting question today on LinkedIn:
“It appears that there is a gap between classification policies and the implementation of the appropriate security controls to enforce the classification at a tatical level. Most places have classification levels, such as confidential or public, but no real way to track, control, monitor the file assets [...]