Security vendor settles charges after getting hacked

Computer forensics and security vendor Guidance Software has settled a complaint filed by the U.S. Federal Trade Commission (FTC), which accused it of failing to take reasonable security measures to protect sensitive computer data.

Guidance's lax security efforts, which allowed hackers to access sensitive credit-card information for thousands of customers, contradicted promises made on its Web site and violated U.S. law, the FTC said. The settlement, announced Thursday, will require the company to implement a comprehensive cybersecurity program and obtain independent security audits every other year for 10 years, the FTC said.

A Guidance spokeswoman didn't immediately return a phone call seeking a comment on the settlement. Security vendor settles charges after getting hacked | InfoWorld | News | 2006-11-16 | By Grant Gross, IDG News Service

Linked by shanmuga Friday, 17th November 2006 1:11AM