From Banking and Health Records to War: Hackers Make New, Troubling Inroads

Among the most sensitive information, according to consumer studies and security experts, is data to conduct bank transactions, personal health and hospital records and military data. In these cases, it seems there is more vulnerability than previous thought.

Security measures such as one-time passwords and phone-based user authentication, considered among the most robust forms of security, are no longer enough to protect online banking transactions against fraud, a new report from research firm Gartner Inc. warns. Increasingly, such measures are overwhelmed by online criminals looking to pillage bank accounts using valid login credentials stolen from customers, the report said.

In healthcare, even in the face of federal regulations, incidents continue to happen. For example, just this week, the personal medical information of an estimated 10,000 Detroiters — Social Security numbers and birth dates, included — has been compromised after two security breaches, city officials revealed. In one incident, a thief broke into a vehicle of a health department employee, snatching a flash drive with information from birth certificates.

Then this week comes coverage from The Wall Street Journal that militants in Iraq have used $26 off-the-shelf software to intercept live video feeds from U.S. Predator drones, potentially providing them with information they need to evade or monitor U.S. military operations. Senior defense and intelligence officials said Iranian-backed insurgents intercepted the video feeds by taking advantage of an unprotected communications link in some of the remotely flown planes’ systems.

What do you think? Are businesses and the military doing enough to protect sensitive data? Email your comments to zaludreport@bnpmedia.com or Tweet at http://twitter.com/securitymag