Newsletters
News & Information for Technology Purchasers NewsFactor Sites:       NewsFactor.com     Enterprise Security Today     CRM Daily     Business Report     Sci-Tech Today  
   
This ad will display for the next 20 seconds. Click for more information, or
Home Enterprise I.T. Cloud Computing Applications Hardware More Topics...
UCS Invicta: Integrated Flash
Deploy flash memory technology to
deliver peak workload performance.

Find out more>>
Network Security
Is your endpoint data protected?
Average Rating:
Rate this article:  
California DMV Investigates Possible Security Breach
California DMV Investigates Possible Security Breach

By Seth Fitzgerald
March 24, 2014 11:25AM

    Bookmark and Share
Solutions to security breaches like the potential breach at the California DMV aren’t cheap or simple. However, the California DMV, other government agencies, and businesses would be better protected by building security into systems and processes from the very beginning, not by bolting on inadequate solutions after the fact, said analyst Charles King.
 


The Department of Motor Vehicles (DMV) in California may have suffered a widespread security breach, leaving millions of online customers open to credit card fraud. Despite a lack of evidence, police and the DMV have warned that a breach may have occurred and “out of an abundance of caution," the DMV has opened an investigation.

Security blogger Brian Krebs first reported on the issue and provided evidence from multiple banks that had received alerts from MasterCard. Even though the alert did not state where the breach occurred, subsequent information from the DMV has revealed what may have happened. While not providing extensive details about the breach, the agency said it had not yet found evidence to suggest that its computer system had been hacked.

As of March 21, the DMV still did not know if the breach affected its payment processor or the actual credit card companies. Both of those scenarios take the blame away from the DMV, even though there is still no public evidence to suggest that its system was not compromised. “In its investigation, the department is performing a forensic review of its systems and seeking information regarding any potential breach from both the external vendor that processes the DMV’s credit card transactions and the credit card companies themselves,” the California DMV said in a statement.

Massive Scale

Conservative estimates that are based on public DMV data suggest that if the breach did occur, there are millions of potential victims. Recent attacks, like the one against Target at the end of last year that compromised the credit and debit card data of some 70 million customers are much larger than the possible DMV breach. However, the DMV’s own statistics reveal that many of its payments come from online transactions, which are at the center of the investigation.

In 2012, there were nearly 12 million online transactions covering license renewals, ID renewals, vehicle registrations, etc. Based upon those numbers, there is an average of 1 million payments each month. The original MasterCard alert warned that transactions between August 2013 and January 2014 were potentially compromised, meaning that as many as 6 million payments could be at risk.

A String Of Attacks

The potential California DMV breach is unique in that it would have affected a government-run institution, but credit card fraud as a result of security breaches is not uncommon. The Target hack has brought these security breaches into the public spectrum.

We asked Charles King, principal analyst at Pund-IT, for his opinion on the recent string of security breaches that have left millions of credit cards open to fraud. He told us that businesses -- both private and public -- use systems that have many potential weak points and trying to patch all of them is a difficult job.

“It isn’t that these systems are essentially incapable of being secured so much as it is that there are so many potential points of intrusion and breakdown,” King said. “The solutions to these problems aren’t cheap or simple but businesses can afford themselves greater protection by building security into systems and processes from the very beginning, not by bolting on inadequate solutions after the fact."
 

Tell Us What You Think
Comment:

Name:



Get Powerful App Acceleration with Cisco. In a world where time is money, you need to accelerate the speed at which data moves through your data center. Cisco UCS Invicta delivers powerful, easy-to-manage application acceleration for data-intensive workloads. So you can make decisions faster and outpace the competition. Learn More.


 Network Security
1.   Microsoft Ruling Raises Privacy Concern
2.   Twitter Buys Password Manager Mitro
3.   Gov't User Data Requests Skyrocket
4.   Retailers Hacked by New Malware
5.   IBM Beefs Up Identity Intelligence


advertisement
Product Information and Resources for Technology You Can Use To Boost Your Business

Network Security Spotlight
Ruling Against Microsoft Raises E-Mail Privacy Concern
Microsoft has been ordered to hand over e-mails to law enforcers in the United States as part of a criminal investigation, even though the e-mail is stored at a data center in Dublin,Ireland.
 
Twitter Buys Password Manager Startup Mitro
Following on the heels of another acquisition earlier this week, Twitter is adding to its fold a password-manager security startup called Mitro, which in turn is releasing its code as open source.
 
Government Requests for Customer Data Skyrocket
Requests for customer data from the government jumped 50 percent in the first half of 2014, according to Twitter, which received more than 2,000 requests for user info from gov't agencies.
 

Navigation
NewsFactor Network
Home/Top News | Enterprise I.T. | Cloud Computing | Applications | Hardware | Mobile Tech | Big Data | Communications
World Wide Web | Network Security | Data Storage | CRM Systems | Microsoft/Windows | Apple/Mac | Linux/Open Source | Personal Tech
Press Releases
NewsFactor Network Enterprise I.T. Sites
NewsFactor Technology News | Enterprise Security Today | CRM Daily

NewsFactor Business and Innovation Sites
Sci-Tech Today | NewsFactor Business Report

NewsFactor Services
FreeNewsFeed | Free Newsletters

About NewsFactor Network | How To Contact Us | Article Reprints | Careers @ NewsFactor | Services for PR Pros | Top Tech Wire | How To Advertise

Privacy Policy | Terms of Service
© Copyright 2000-2014 NewsFactor Network. All rights reserved. Article rating technology by Blogowogo. Member of Accuserve Ad Network.