First Reference company logo

Inside Internal Controls

News and discussion on implementing risk management

machine cogs image

Breaches due to malware or spyware

My cyber confession

Should we give up auditing information security and the management of cyber risk? Not at all. But we should do so with eyes wide open. We should recognize the limitations of our knowledge, tools and techniques and the likelihood that hackers have new techniques that are unknown both to auditors and management.


, , , , , , , , , ,

Employee error causes most breaches; spyware breaches are most costly

The two most common sources of breaches are unintended disclosure—like misdirected emails and faxes, which account for 31 percent—and the physical loss of paper records, accounting for 24 percent. That’s according to a new analysis of more than 1,500 data breaches in 2013 and 2014.


, , , , , , , ,