ICSA Labs, a security products testing and certification firm, has announced a new certification process and program that will address threats of security risks in networked devices such as fax machines and printers.  This new program will include vendor certifications to allow consumers an option to be aware of those vendors who have taken the extra steps to have their products validated as claimed by an independent third party audit and testing process.

Joan Goodchild, a senior editor for the CSO magazine, has written a great article entitled “Is Your Printer Secure?” which talks about these same issues  – only in more detail. 

You can read that article in its entirety by clicking the following link: 

http://www.csoonline.com/article/502720/Is_Your_Office_Printer_Secure_

We hope this information has been helpful to you and/or your organization.

In an article written by Greg Lawn for Computerworld magazine, the timely topic of e-discovery was addressed from a viewpoint of suggesting what to do to avoid a potential e-discovery disaster.  Because so many companies are now exposed to more regulations and compliance issues than ever before, every company should have an awareness of this issue as a regular agenda item in management meetings.

While the processes to follow do not have to be overly complicated, those processes should reflect a best practices approach when being implemented into an organization.  Greg Lawn’s articles attempts to do that by listing the following major best practices to help an organization avoid such a disaster scenario:  (1) Talk to your company’s legal department regularly about e-discovery, (2) Make your information-handling practices routine and consistent, (3) Keep an audit trail of your activities, (4) Know who had the data under legal hold request and when, (5) Understand what spoliation is, (6) Be ready to preserve all data, and (7) Know what have and what you don’t have.

Click here to read details for avoiding an e-discovery disaster.

With so much in the news recently about data breach notification, the red flag rules, and information security and privacy laws, our team thought that some reading on the topic of online fraud from an insider’s view and also a discussion of some of the tools of their trade, would be great handout material to all risk managers and members of contingency planning groups in any organization.

We recommend that you read this article written by Linda McGlasson, Managing Editor of Government Info Security.