User access is the number one IT security concern among healthcare workers, according to a study conducted by Courion.

The PCI Security Standards Council has clarified two key provisions of the Payment Card Industry Data Security Standard (PCI DSS).

Before embarking on a role management project, take time to consider your business objectives and project scope, says Jackie Gilbert, founder and VP of marketing, SailPoint.

E-discovery investigations can look into the alleged wrong-doings of a terminated employee and/or provide electronic records for use in corporate litigation, a lead forensics investigator told RSA Conference attendees on Wednesday.

A student loan company has settled with the Federal Trade Commission over charges it did not offer reliable security for its customers' personal information.

Federal agencies are not doing enough to protect citizens from identity theft, according to a report by the U.S. Government Accountability Office (GAO), the investigative arm of Congress.

ChoicePoint, whose watershed breach prompted a burst of state disclosure laws, has been acquired by LexisNexis information service parent, Reed Elsevier, for $4.1 billion, the two companies announced Thursday.

A federal judge in San Francisco has ordered the disabling of a website that discloses confidential information, a precedent-setting ruling that may raise a legal challenge to the growing online black market in purloined data while testing First Amendment rights.

The State Senate in California has passed measures that require more extensive notification to consumers of data breaches, establish a central reporting center for breaches, and permit local prosecution of identity theft in the nation's most populous state.

Does anyone today really believe that they can keep their personal information entirely confidential? While some people have personal preferences about how much personal information they are forced to reveal, functioning within society requires some exposure.