topic Clean your disks ... in Industry News https://community.isc2.org/t5/Industry-News/Clean-your-disks/m-p/15008#M1631 <P>NCIX was a nice source for computer parts.&nbsp; (I once bought a microSDHC from them.)&nbsp; Then they went bust.&nbsp; (I doubt the fact that I had bought something from them had anything to do with it.)</P><P>&nbsp;</P><P>Now <A href="https://www.cbc.ca/news/canada/british-columbia/ncix-breach-private-computer-lawsuit-1.4838149" target="_blank">they are in legal trouble</A>.&nbsp; Somebody seems to have obtained the servers they used, with lots of customer information still there.&nbsp; I'm not surprised that they've still got customer data on their drives: lots of companies get sloppy about that.&nbsp; (It's a bit more surprising when it was a company that dealt with hackers and geeks on a daily basis.&nbsp; It's why the EU Privacy DD and GDPR say you shouldn't keep data beyond a time you might need it again. &nbsp; And even more surprising when it was credit card data: hasn't anybody ever heard of <A href="https://en.wikipedia.org/wiki/Payment_Card_Industry_Data_Security_Standard" target="_blank">PCI-DSS</A>?)</P><P>&nbsp;</P><P>Also included in the lawsuit is the auction company that sold the stuff ...</P> Mon, 09 Oct 2023 08:57:39 GMT rslade 2023-10-09T08:57:39Z Clean your disks ... https://community.isc2.org/t5/Industry-News/Clean-your-disks/m-p/15008#M1631 <P>NCIX was a nice source for computer parts.&nbsp; (I once bought a microSDHC from them.)&nbsp; Then they went bust.&nbsp; (I doubt the fact that I had bought something from them had anything to do with it.)</P><P>&nbsp;</P><P>Now <A href="https://www.cbc.ca/news/canada/british-columbia/ncix-breach-private-computer-lawsuit-1.4838149" target="_blank">they are in legal trouble</A>.&nbsp; Somebody seems to have obtained the servers they used, with lots of customer information still there.&nbsp; I'm not surprised that they've still got customer data on their drives: lots of companies get sloppy about that.&nbsp; (It's a bit more surprising when it was a company that dealt with hackers and geeks on a daily basis.&nbsp; It's why the EU Privacy DD and GDPR say you shouldn't keep data beyond a time you might need it again. &nbsp; And even more surprising when it was credit card data: hasn't anybody ever heard of <A href="https://en.wikipedia.org/wiki/Payment_Card_Industry_Data_Security_Standard" target="_blank">PCI-DSS</A>?)</P><P>&nbsp;</P><P>Also included in the lawsuit is the auction company that sold the stuff ...</P> Mon, 09 Oct 2023 08:57:39 GMT https://community.isc2.org/t5/Industry-News/Clean-your-disks/m-p/15008#M1631 rslade 2023-10-09T08:57:39Z