Once again, Brian Krebs is on point, this time digging into the fallout from recent spear phishing attacks. The dark truth here seems to be that identity thieves don't have to go to the place you do business, or even attack the company who has your account; sometimes they can gain access to your information by going through a company's business partner.
Of course, this specific issue is addressed, at least nominally, in the Data Accountability and Trust Act (HR 2221), which is expected to be passed into law in 2011. But there is some speculation on how effective some of the bill's measures will be....
Comments
No comments yet. Leave a Comment