03/27/2008 - A bill (S. 2168) introduced by Sen. Patrick Leahy (D-VT) that would increase penalties for identity theft has been approved by the Senate and is now pending in the House Judiciary Committee. The bill would provide restitution for victims of identity theft for the time spent dealing with the issue as well as actual monetary damages. The bill would also expand the identity theft laws to include organizations that are victimized rather than just individuals as under current law. Such damages could be paid for using criminal and civil forfeitures of property used to commit computer fraud offenses.
01/24/2008 - An new Arizona law (formerly S.B. 1042) amends existing data security statutes to include breaches of data maintained by law enforcement agencies. Prior to S.B. 1042, which requires that businesses in the state conduct an investigation after a breach of data security and notify those customers affected by the incident, law enforcement agencies were not exempt. Under the new law, the state department of public safety, county sheriff’s offices, and municipal police departments must develop an information security policy that includes notification procedures in case of a data breach.
01/24/2008 - Despite police efforts to stamp out La Cosa Nostra in Italy, it seems to survive—and thrive, accounting for 7 percent of Italy’s GDP, says the Italian business association Confesercenti. (The report is in Itailian.) Read the Italian banking association’s report on surging bank robberies, also in Italian, here.