Data warehouses vs. Identity Thieves

by Eric H
Summary

In this article it talks about identity thief and data warehouse. ChoicePoint is a company that do business in obtain public records like court records, or purchasing data from companies that we do business with (eBay, EastBay, etc).  An example of the type of data ChoicePoint might have of yours are Social Security number, name and address, credit card transaction histories, mortgages, loans, etc. With the data they have of about you, they gives a rough idea about you to those that are might buy data from ChoicePoint to get a idea about you (getting hired for a job, applying for mortgages, etc).   Recent breaches at ChoicePoint have disclosed 140,000 individuals’ personal data to the a group of unauthorized people that got in to the system (Vamosi, 2005). They did so by creating fraudulently accounts with ChoicePoint then bought data from them, they then use these data they have to defraud people, and they can use these data to open credit accounts, or apply for mortgages under the victims’ names (Vamosi, 2005).

 

I found this interesting and it relates to what we talked about in class because it in about data warehouses. But in this article, it talks about warehouse in a way that is not related to technical side of warehouse, but potential non-technical threats we have with data warehouse.  There are many advantages to data warehousing, such like convenience, cuts cost. But centralization of data also makes data warehouse a big target for these hackers, or anyone that have illegitimate reason for these data. Security for database might get better over time, but at the same time the hackers are also advancing. However, some good news that’s related to the non-technical part is that now there are laws about who can purchase data from companies like ChoicePoint, and all the difficult steps they have to go through to set up accounts. However, I am not sure if the benefits of data warehouses can out weight the potential harms can data warehouse can do.

 

Citation:

 

Vamosi, R. (2005, February 25). Cnet. Retrieved from http://reviews.cnet.com/4520-3513_7-5690533-1.html

 

5 thoughts on “Data warehouses vs. Identity Thieves”

  1. It's bad enough when a major corporation such as Sony cannot keep their customer info locked down tight. When a company whose main asset IS valuable customer data is breached, it will not auger well for any party.

    As you mentioned, the race between black hat and white hat programmers is constantly advancing. Security experts will shutdown exploits as quickly as hackers can discover them. Database (or data warehouse) related ones can be particularly painful as well.

    Another interesting point to note is the method of system entry by the attackers – they first created legitimate accounts for the service. Since I first learned about it from a SWIFT (campus club) meeting, I have been intrigued by the concept of social engineering and I feel this constitutes a fairly good example of it.

    Nice find, cheers.

  2. We need to hire these hackers! Data warehouses are always going to be a be target for any hacker. Sometimes they just do it just for fun and then simply show the company that they got hacked. Data Warehouses are always going to going to be a double edged sword and these black and white hat programmers must become the knights that can wield this sword.

  3. With technology always changeing I think that there will always be data security issues. I think people in general no matter what kind of information they fill out on line must always be cautious because the company they are filling information for can get hacked. I deffenitly do agree that we should hire these hackers or maybe even learn a thing or 2 from them on how to secure ones database or datawarhouse. Security will always be an issue and turning to a black hacker for help can’t hurt—hopefully.

  4. Interesting article. It is surprise to hear that centralization data is not safe that hacker access and steal data.

  5. With technology always changing I think that there will always be data security issues. I think people in general no matter what kind of information they fill out on line must always be cautious because the company they are filling information for can get hacked. I definitely do agree that we should hire these hackers or maybe even learn a thing or 2 from them on how to secure ones database or data warhouse. Security will always be an issue and turning to a black hacker for help can’t hurt—hopefully.

Comments are closed.