Author Archives: Roberto Obialero

About Roberto Obialero

Roberto is a Security Professional self-employed currently consulting with several customers and managing the IT Security projects at Gruppo Finmatica. He has more than thirty years of experience in the Information and Communication Technology field working in both technical and business development roles for various sized businesses; the past fifteen years have been focused on activities like secure networks design, critical infrastructures protection, vulnerability assessment, enterprise security monitoring, incident handling and computer forensics. He holds a degree in Telecommunications Engineering at Politecnico di Torino and two SANS Gold Certifications: GIAC Perimeter Protection Analyst (GPPA) and GIAC Certified Forensic Analyst (GCFA). He's a research contributor for several publications edited by Italian security groups (Clusit, Oracle Community for Security, Cloud Security Alliance, Digital Forensics Alumni) with the main objective to disseminate information about security topics. Roberto feels such collaboration is a great opportunity to meet security minded people and share passion and knowledge within the community.

Cox Communications Settles FCC Charges

Cox Communications will pay nearly US $600,000 to settle Federal Communications Commission (FCC) charges regarding a breach that exposed customer data. The incident occurred in August 2014 and compromised addresses, driver’s license numbers, and partial Social Security numbers (SSNs). The FCC said that Cox did not provide adequate security for the data and that the… Read More »

Non-Healthcare Companies Have Exposed Personal Health Information in Breaches

According to a study from Verizon, nearly 20 percent of breaches involving healthcare information are not detected for at least one year. This is due in part to the fact that some organizations outside the healthcare sector are unaware that they have healthcare data stored in their systems. Twenty percent of healthcare breaches of health… Read More »

Hello Kitty User Database Unprotected

A breach of sanriotown.com has exposed the personal information of 3.3 million Hello Kitty users. The database may have been open to intruders for more than a month. The vulnerable database was found by the same person who recently discovered the unprotected MacKeeper database. The Register story NBC News Wired story

License Plate Reader Data Exposed

The Electronic Frontier Foundation learned that more than 100 automated license plate recognition (ALPR) cameras were exposed online. In some cases, the camera live streams could be accessed. ALPR systems capture images of license plates and alert authorities when they spot a plate on the “hot list.” The data are collected and stored even if… Read More »

Sony Settles (Some Claims) Over Breach

Sony will pay up to US $8 million to settle claims against the company over a breach that exposed employee information. The settlement calls for a maximum of US $10,000 per person affected for losses incurred due to identity theft; a maximum of US $1,000 per person for fraud protection services. US $3.5 million is… Read More »

Bill’s Approval Marks Progress Toward Safe Harbor Alternative

The US House of Representatives has passed the Judicial Redress Act, which would give foreigners data protection equal to that of US citizens. The bill’s passage is a step toward enacting data protection for foreigners that could help the chances of the EU approving a replacement for the Safe Harbor agreement. The European Court of… Read More »

OPM Breach Database of Victims

The US Department of Defense (DoD) is proposing to create a temporary database of people whose personal information was stolen in the colossal Office of Personnel Management (OPM) breach. The purpose of the database will be to identify who is eligible for identity-theft protection services. The breach affected more than 21 million federal employees. Nextgov… Read More »