communicate Tutorial. Website Development. Search Engine Optimization and examine Engine Marketing. Internet Marketing. Technology Tips and Tricks. Internet Hacking and Advertising schedule analyse
Written by Anna Maria VirziNonprofit organizations using Convio an e-mail service provider were recently forced to put their crisis management strategies to bring home the bacon after the vendor's computer system was hacked. Convio revealed this month that a hacker obtained an employee's log-in and password for one of its software platforms logged in grabbed an undisclosed number of e-mail addresses and passwords from 92 nonprofit and advocacy organizations and prepared to transfer records for another 62 clients. Convio customers reportedly affected by the breach include the American Museum of Natural History. CARE and the American Red Cross. In an challenge believed to be isolated to another Convio client the University of Connecticut Foundation the hacker obtained partial credit separate account numbers for about a dozen donors. For the record. Tad Druart. Convio's corporate communications director says the data doesn't appear to undergo been misused. The company he said reported the breach to law enforcement officials and has taken measures to improve security immediately and for the long term. Convio's security director wasn't available for an converse. Convio's incident is minor compared to other data breaches especially measure year's theft of credit and account separate information from TJX Companies' computer systems. Still this case serves as a cautionary tale for e-mail marketers. It's no secret: security concerns can hurt brand loyalty. The add up cost of a security breach in 2007 is $197 per preserve according to a Ponemon Institute chew over sponsored by two security software vendors. Lost business accounts for $128 per record followed by follow-up activities such as ex-post response ($46) customer notification ($15) and breach detection ($9). Consider UConn Foundation's multipronged response to the incident. Telephone calls were made to one dozen donors whose partial ascribe card numbers were exposed and to 150 others whose e-mail addresses and passwords to the Convio system were swiped says Art Sorrentino the foundation's spokesman. The UConn Foundation e-mailed another 89,000 constituents whose e-mail addresses were exposed. Online the UConn Foundation provides updates and explains what the disrespect means."We prefer to err on the align of caution and give people more information," Sorrentino says. Once learning of the disrespect the foundation's aggroup developed its action intend. Some history on Convio: The Austin. Texas based affiliate's customers are nonprofit and advocacy groups; it helps these organizations collect and bring home the bacon donations online and in some cases runs their e-mail service. Business took off four years ago after Howard Dean's presidential race used its software to help raise millions. Fast-forward to 2007: Convio has its sights set on becoming an even bigger player filing for an initial public offering of its stock in August and acquiring rival GetActive in February. (The breach affected customers using the GetActive platform.)While some might be inclined to dismiss Convio's breach as harmless not everyone sees it that way."If you're one of those affected this breach becomes big to you," says Mike Spinney communications director of the Ponemon Institute an organization that preaches responsible information and privacy management practices. Data breaches occur in an assortment of ways. The Ponemon study released this week finds the loss or theft of a laptop or another device accounts for one in two breaches; while a third party or outsourcer is the most significant source in 16 percent of the incidents. Laptops are typically stolen for the hardware and not for the information they hold. Spinney says. Convio's breach is troubling he says because someone appeared to be seeking specific information that could be used to act fraud."The information obtained can be very valuable to a skilled social engineer to carry out phishing scams and other types of fraud. Just because a SSN [Social Security number] or ascribe card account isn't move of the haul doesn't convey the information is of no use," Spinney wrote in a follow-up e-mail to ClickZ. How should marketers respond to a breach including those stemming from partners and vendors? Consider this advice from the Ponemon Institute: * Avoid a breach. "Do things in go so you don't approach the situation," Spinney advises. That includes assessing your security risk and those of third-party partners before an incident occurs. * Don't let your guard down. Building in safeguards involves more than installing security software. populate must be educated and processes adopted to avoid breaches. "You need good technology and good people who follow best practices," Spinney says. * Comply with laws. inform the data breach to law enforcement officials. For its part. Convio reported the breach to the FBI's national Internet crime unit. Keep in object that 35 states including California require businesses and other organizations to inform customers and others when personal information has been compromised by unauthorized access. * Communicate with customers. In addition to notifying those personally affected by a breach ensure they understand the breadth and potential risks and furnish them specific measures to thwart fraud. * Review security processes again. Convio hired third parties to perform a security audit and to help with its investigation and work with law enforcement agencies. It also took immediate steps such as reducing the number of populate who have find to its platforms and revoked and reissued administrator passwords. What lessons can be learned from Convio's breach?"This is the cost of doing business using electronic media," says UConn Foundation's Sorrentino. "The beat thing we can hope to do is catch it early and do the right thing by contacting those affected and making sure we act every go possible to protect them."BiographyAnna Maria Virzi joined The ClickZ Network as executive editor in August 2007. Previously she was executive editor at Ziff Davis Media's Baseline magazine. She's also held editorial posts at. Internet World and the Connecticut Post and received awards from American Business Media the American Society of Business Publication Editors and New England Associated Press. Get more links get more money. Join with now!
PARTNERS SITE:-----------------------------------------------------ADULT SITE PARTNERS: | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | | |
Forex Groups - Tips on Trading
Related article:
http://entirewebs.blogspot.com/2007/11/when-hacker-strikes-e-mail-service.html
comments | Add comment | Report as Spam
|
