Interview with John Vacca, information technology consultant and internationally known author
by Mirko Zorz - Tuesday, 9 September 2003.
You can stop doing business on the Internet as an individual. But, it's really what your ISP can do for you that's most important.

The following are ID Theft prevention methods for ISPs:

1. Limit the access to your customer' information within your organization.

2. Practice due diligence to ensure those who do have access are trustworthy (background checks).

3. Make sure your online transaction forms are as secure as you can make them.

4. Have one member of your staff, your Privacy Officer, responsible for your customer's data.

5. Educate your customers to the possible dangers of giving out personal information and make sure your staff is ready to help in the event they are victims of such an attack.

6. Know the law. When the Feds come knocking, it will be helpful for you to know exactly what to give them and why.

In your opinion, what should a bank do if they realize one of their customers has become a victim of identity theft?

Banking organizations should provide their customers with information about how to prevent identity theft and necessary steps to take in the event a customer becomes a victim of identity theft. An excellent source of information for consumers is the Federal Trade Commission's website.

Banking organizations should also assist their customers who are victims of identity theft and fraud by having trained personnel to respond to customer inquiries, by determining whether an account should be closed immediately after a report of unauthorized use, and by prompt issuance of new checks or new credit, debit or ATM cards. If a customer has multiple accounts with the institution, it should assess whether any other account has been the subject of potential fraud.

What are your plans for the future? Any exciting new projects?

I am presently working on a book for Prentice Hall that is tentatively tiled "The World's 20+ Greatest Unsolved Problems In Science" It should be out in December.


Pen-testing drone searches for unsecured devices

You're sitting in an office, and you send a print job to the main office printer. You see or hear a drone flying outside your window. Next thing you know, the printer buzzes to life and, after spitting out your print job, it continues to work and presents you with more filled pages than you expected.

Weekly newsletter

Reading our newsletter every Monday will keep you up-to-date with security news.

Daily digest

Receive a daily digest of the latest security news.

Fri, Oct 9th