There has been a rash of press lately on data theft, its relation to spam and phishing, and its implications for ecommerce. But was hasn’t been analyzed very thoroughly is the source of these incidents. The general consensus always seems to be it is some internet scammers fault.
The Register, however, took a closer look at the troubles, and points out an interesting correlation. None of the latest and greatest involved online transactions.
The issues seem to revolve around internal security errors, poor policies and procedures for storing and transfering data, and a general lax attitude towards the implications of both. In some cases, the true nature and extent of breaches is still to be determined (if ever).
Read ID theft is inescapable for more details.