Access member only content, take part in discussions with comments on blogs, news and reviews and receive all the latest security industry news directly to your inbox. Join now for free.
A confirmation email has been sent to your email address - SUPPLIED EMAIL HERE. Please click on the link in the email to verify your email address. You need to verify your email before you can start posting.
If you do not receive your confirmation email within the next few minutes, it may be because the email has been captured by a junk mail filter. Please ensure you add the domain @scmagazine.com.au to your white-listed senders.
An industry panel at the 2010 RSA conference is urging firms to come clean when a data breach occurs.
The panel of justice officials, attorneys, security staff and standards groups all said that cooperation from victims was by far the most effective tool for successfully prosecuting cyber criminals.
US Department of Justice (DOJ) senior counsel Kimberley Kiefer Peretti said that her agency's recent prosecution of a massive data theft operation run by hacker Albert Gonzalez was credited largely to the help of retailers.
"In every case where we had a successful prosecution it was because of close collaboration with the victim," said Peretti.
Despite the importance of internal data to prosecutors, many companies are still hesitant to call in law enforcement after a breach. Peretti said that the amount of reports the DOJs receives over data breaches is believed to be a small fraction of all instances.
"There is always the fear law enforcement is going to rush in and disrupt the business, but I've never seen that happen," she said.
John Woods, a lawyer specialising in information security and internal investigation for law firm Hunton and Williams, said that there should be little to fear.
"There are some companies that do the 'head in the sand' approach, other companies do a lot of forensics, a lot of studying," he said.
"What we found is by giving information to law enforcement, we have found that it does not harm our companies' positions."
To begin commenting right away, you can log in below or register an account if you don't yet have one. Please read our guidelines on commenting. Offending posts will be removed and your access may be suspended. Abusive or obscene language will not be tolerated. The comments below do not necessarily reflect the views or opinions of SC Magazine, Haymarket Media or its employees.