True Stories

2004 CSI/FBI Computer Crime and Security Survey
http://i.cmpnet.com/gocsi/db_area/pdfs/fbi/FBI2004.pdf

Leak of Corporate Secrets
http://www.csoonline.com/read/060104/flashpoint.html

Tower Records settles with FTC over Internet Security Flaw
http://www.ftc.gov/opa/2004/04/towerrecords.htm

Guess settles for false claim of Information Security
http://www.ftc.gov/opa/2003/06/guess.htm

See You in Court
http://www.cio.com/archive/110101/court.html

ISP Guilty in Child Porn Case
http://www.wired.com/news/culture/0,1284,41878,00.html

Verizon and Slammer worm
http://www.mass.gov/dte/telecom/03-38/56attcomne.pdf

GLBA

Financial Services Modernization Act
http://banking.senate.gov/conf/grmleach.htm

FFIEC
http://www.ffiec.gov/

HIPAA

U.S. Department of Health and Human Services
http://www.hhs.gov

Fact Sheet
http://www.hhs.gov/ocr/hipaa/

NCUA

NCUA Website
http://www.ncua.gov/

Risk Management of Outsourced Technology Services
http://www.ncua.gov/letters/2000/00-CU-11.pdf

Letters to Credit Unions
http://www.ncua.gov/IST/ISTltcu.html

NCUA Information Security Updates
http://www.ncua.gov/FBIIC/Security/Index.htm

Part 748 and the new Appendix A
http://www.ffiec.gov/ffiecinfobase/resources/management/ncu-12_cfr_748_sec_prog_reprt_crime_bk_sec_compli.pdf

FTC

Council of Better Business Bureaus, National Cyber Security Alliance , Federal Trade Commission, Offer Businesses Tips For Keeping Their Computer Systems Secure
http://www.ftc.gov/opa/2004/04/cybersecure.htm

Cybersecurity and Consumer Data:
What's at Risk for the Consumer?
http://www.ftc.gov/os/2003/11/031119swindletest.htm

Senate Bill 1386
http://info.sen.ca.gov/pub/01-02/bill/sen/sb_1351-1400/sb_1386_bill_20020926_chaptered.html

SEC

Framework for Enhancing the Quality of Financial Information Through Improvement of Oversight of the Auditing Process http://www.sec.gov/rules/proposed/33-8109.htm

Disclosure Required by Sections 404, 406 and 407 of the Sarbanes-Oxley Act of 2002
http://www.sec.gov/rules/proposed/33-8138.htm

OCC