IT Governance

JANUARY 9, 2024

LockBit claims responsibility for Capital Health security incident The LockBit ransomware group has claimed responsibility for an attack on Capital Health , a healthcare provider in Pennington, New Jersey, last November. KG Source 1 ; source 2 (New) Manufacturing Germany Yes 1.1 They accessed 41.5 Data breached: 41,500,000 records.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

IT Governance

FEBRUARY 6, 2024

Source 1 ; source 2 (New) Professional services USA Yes 11,556 Poder Judicial de Santa Cruz Source (New) Legal Argentina Yes 8,732 J.D.

Data Privacy 88

Data Privacy Privacy Insurance Security 88

IT Governance

MARCH 5, 2024

Source (New) Engineering Japan Yes >5 TB Array Networks Source (New) Cyber security USA Yes 2.5 TB Turtlemint Source (New) Insurance India Yes 1,800,000 Chunghwa Telecom Source (New) Telecoms Taiwan Yes 1.7

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

FEBRUARY 21, 2024

Fowler sent a responsible disclosure notice when he discovered the database and it was secured the following day. Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 Source New Manufacturing USA Yes 20,415 TECA Srl Source New Transport Italy Yes 16.7 GB AGC Flat Glass North America, Inc.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

JANUARY 23, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight More than 70 million email addresses added to Have I Been Pwned The security researcher Troy Hunt has added more than 70 million email addresses from the Naz.API data set to his Have I Been Pwned data breach notification service. VF Corporation confirms 35.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

DECEMBER 19, 2023

An investigation determined that personal data, including names, addresses, phone numbers, Social Security numbers, dates of birth and bank account numbers, belonging to nearly 15 million people was obtained by an unauthorised party between 30 October and 1 November. GB Coca-Cola Singapore Source (New) Manufacturing Singapore Yes 413.92

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. It has since been confirmed by Anukul Peedkaew, the permanent secretary of social development and human security.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

IT Governance

JANUARY 16, 2024

Source (New) Manufacturing USA Yes 42 GB Auto-Motion Shade Inc. Drug Mart Source 1 ; source 2 (Update) Healthcare USA Yes 36,749 Elliott Group Source (New) Manufacturing USA Yes 31.5 Drug Mart Source 1 ; source 2 (Update) Healthcare USA Yes 36,749 Elliott Group Source (New) Manufacturing USA Yes 31.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

FEBRUARY 27, 2024

The breached data includes names, addresses, emails, phone numbers, dates of birth, and financial account and Social Security numbers. The breached data may include names, Social Security numbers and health insurance information. TB Roncelli Plastics Source (New) Manufacturing USA Yes 1.6

Data Privacy 52

Data Privacy Manufacturing Privacy Data breaches 52

IT Governance

JANUARY 30, 2024

Mobile network database breach exposes 750 million Indians’ personal data The Indian security company CloudSEK claims to have found the personal data of 750 million Indians for sale on an “underground forum”. TB Four Hands Source (New) Manufacturing USA Yes 1.5 Data breached: 2 PB.

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

IT Governance

OCTOBER 24, 2023

Incident details: Network security incident, where allegedly AlphV gained unauthorised access and made demands to the hospital’s leadership, suggesting a ransomware attack. D-Link Corporation Provides Details about an Information Disclosure Security Incident Date of breach: 2 October 2023. Records breached: Around 700 records.

Data Privacy 107

Data Privacy Privacy Security Data breaches 107

Hunton Privacy

OCTOBER 14, 2021

During the week of October 4, 2021, California Governor Gavin Newsom signed into law bills amending the California Privacy Rights Act of 2020 (“CPRA”), California’s data breach notification law and California’s data security law. Genetic Data: California Data Breach Notification and Data Security Law Amendment Bill.

Privacy 98

Privacy Insurance Security Data breaches 98

IT Governance

NOVEMBER 28, 2023

The post The Week in Cyber Security and Data Privacy: 20 – 26 November 2023 appeared first on IT Governance UK Blog. In the meantime, if you missed it, check out last week’s round-up. Please do also let us know what you think about our new table format.

Data Privacy 52

Data Privacy Privacy Energy and Utilities Data breaches 52

Security Affairs

NOVEMBER 10, 2023

The security breach exposed the sensitive personal information of 2,192,515 people. Exposed information varied by individual and may include some combination of certain individuals’ names, social Security number, health insurance information, date of birth, and medical information. million individuals. It is a $6.6

Data breaches 100

Data breaches Ransomware Insurance Manufacturing 100

DLA Piper Privacy Matters

MAY 5, 2020

Main takeaways from the EDBP guidelines are: Connected vehicles raise various privacy and data protection concerns, such as the lack of control and information asymmetry, the risk of excessive data collection; the risk of unlawful further processing of personal data; Most data associated with connected vehicles are considered as personal data (e.g.

Privacy 69

Privacy Personal data GDPR Insurance 69

Hunton Privacy

MARCH 2, 2023

s ability to assist allies and partners in strengthening cybersecurity, (iv) building coalitions to reinforce global norms of responsible state behavior, and (v) securing global supply chains for information, communications and operational technology products and services that power the U.S.

Cybersecurity 110

Cybersecurity IoT Military Insurance 110

IBM Big Data Hub

MAY 9, 2024

Healthcare organizations need a strong data governance framework to help ensure compliance with regulations like the Health Insurance Portability and Accountability Act of 1996 (HIPAA) in the US and the General Data Protection Regulation (GDPR) in the EU. Inaccuracies might also lead to more delays or complications with insurance coverage.

Government 68

Government GDPR Compliance Analytics 68

IT Governance

JUNE 1, 2021

If you find yourself facing a cyber security disaster, IT Governance is here to help. Edinburgh mental health clinic in probe after client information accessed in scam (unknown) Iranian Hackers Hit H&M Israel (unknown) South Africa’s VirginActive goes offline after cyber attack (unknown) B.C. Find out more. Ransomware.

Data breaches 124

Data breaches Ransomware Insurance Energy and Utilities 124

Security Affairs

NOVEMBER 25, 2020

Belden, the manufacturer of networking and cable products, disclosed a data breach, threat actors have stolen employee and business information. The company said the breach did not impact operations at manufacturing plants, quality control or shipping, it added that attackers only had access to a “limited number” of company servers.

Data breaches 101

Data breaches Manufacturing Insurance Access 101

The Security Ledger

OCTOBER 23, 2018

In this episode of the podcast (#117), we go deep on one of the hottest sectors around: cyber insurance. In the first segment, we talk with Thomas Harvey of the firm RMS about the problem of “silent cyber” risk to insurers and how better modeling of cyber incidents is helping to address that threat. Read the whole entry. »

Insurance 40

Insurance Risk Digital transformation Ransomware 40

eSecurity Planet

MARCH 3, 2023

The initiatives that stand out the most — critical infrastructure security standards, a national data privacy and security law, and liability for security failures — will likely take time and the support of Congress to implement. is the creation of mandatory requirements for critical infrastructure security.

Cybersecurity 132

Cybersecurity Government Manufacturing Personal data 132

Data Matters

JUNE 11, 2019

On May 29, 2019, Nevada governor Steve Sisolak signed SB220 , a new bill that will amend the state’s existing online privacy notice statutes, NRS 603A.300 While several states have introduced CCPA-inspired bills, Nevada is the first state in which such a bill has become law.

Privacy 76

Privacy Sales Insurance Manufacturing 76

Information Governance Perspectives

APRIL 5, 2023

John Danenberger, CPCU, is Corporate Counsel at State Farm Insurance and specializes in addressing emerging issues around telematics. In 2015, he successfully transitioned from a military career as a trial attorney for the JAG Corps to working in telematics in corporate America for State Farm Insurance.

Insurance 52

Insurance Military Artificial Intelligence Manufacturing 52

IBM Big Data Hub

JULY 7, 2023

But with a proactive approach to data security, organizations can fight back against the seemingly endless waves of threats. IBM Security X-Force found the most common threat on organizations is extortion, which comprised more than a quarter (27%) of all cybersecurity threats in 2022. Where do data breaches originate?

Security 40

Security Data breaches Data Privacy Compliance 40

IT Governance

FEBRUARY 1, 2023

The new year comes with the promise of fresh beginnings and the promise to revolve the bad habits of our past, but we’ve had no such luck in the cyber security sector. Our research discovered 104 publicly disclosed security incidents, which accounted for 277,618,767 leaked records.

Data breaches 136

Data breaches Ransomware Insurance Government 136

IT Governance

FEBRUARY 16, 2023

In a security notice filed with Montana’s Attorney General office, Pepsi explained that the breach started on 23 December 2022. Pepsi said that it “took prompt action to contain the incident and secure [its] systems”. What went wrong?

Data breaches 105

Data breaches Insurance Manufacturing Access 105

CGI

MAY 27, 2016

Time and tide waits for no man – IoT in Insurance. This old saying could also be applied for what is happening in the insurance market with IoT and that given the drive behind IoT in both the consumer and business markets. For example, car insurance could be varied between theft and fully comprehensive when the Car is not being used.

Insurance 40

Insurance IoT Marketing Manufacturing 40

IT Governance

MAY 7, 2024

Source 1 ; source 2 (Update) Insurance USA Yes 75,101 Airsoftc3.com Source 1 ; source 2 (Update) Insurance USA Yes 75,101 Airsoftc3.com Source (New) IT services USA Yes 1,382 Worthen Industries Source 1 ; source 2 (Update) Manufacturing USA Yes 1,277 R.J. Source (New) Manufacturing USA Yes Unknown Human Events.

Data breaches 59

Data breaches Education Manufacturing Retail 59

Hunton Privacy

OCTOBER 14, 2014

On October 8, 2014, the Department of Homeland Security reported that over the course of several months, the network of a large critical manufacturing company was compromised. The incident raises some issues for cyber insurance.

Insurance 40

Insurance Cybersecurity Manufacturing Information Security 40

IT Governance

APRIL 1, 2021

Don’t be fooled by the fact that we only recorded 20,995,371 breached records in March; it was one of the leakiest months we’ve ever seen, with 151 recorded incidents. By comparison, there was a seemingly Lilliputian 82 recorded breaches in January and 118 in February.

Data breaches 130

Data breaches Ransomware Manufacturing e-Delivery 130

IT Governance

SEPTEMBER 1, 2020

There were a massive 99 data breaches and cyber attacks in August, making it the third-biggest monthly total of the year by number of security incidents. The true figure, as always, will be higher than this – in part because organisations rarely disclose how many records were involved in security incidents. Cyber attacks. Ransomware.

Data breaches 122

Data breaches Ransomware Insurance Manufacturing 122

Hunton Privacy

FEBRUARY 28, 2014

Hunton & Williams Insurance Litigation & Counseling partner Lon Berk reports: The recently publicized Secure Sockets Layer (“SSL”) bug affecting Apple Inc. products raises a question regarding insurance coverage that is likely to become increasingly relevant as “The Internet of Things” expands.

Insurance 40

Insurance Manufacturing Risk Security 40

Security Affairs

NOVEMBER 20, 2023

– Authentication and Security : APIs may require authentication for access control. Here are a few: Security Vulnerabilities : Unmanaged APIs may have security vulnerabilities that can be exploited by malicious actors. This security is crucial for protecting sensitive data and preventing unauthorized access.

Authentication 99

Authentication Risk Government Compliance 99

IT Governance

OCTOBER 25, 2018

This week, we discuss the stalemate between Bloomberg Businessweek and Supermicro, Apple and Facebook’s call for a federal data privacy law in the US, and what the Morrisons Appeal Court ruling means for every organisation. We at Apple are in full support of a comprehensive federal privacy law in the United States.”.

Data Privacy 70

Data Privacy Privacy Data breaches GDPR 70

IBM Big Data Hub

MARCH 28, 2024

As cloud computing continues to transform the enterprise workplace, private cloud infrastructure is evolving in lockstep, helping organizations in industries like healthcare, government and finance customize control over their data to meet compliance, privacy, security and other business needs. billion by 2033, up from USD 92.64

Cloud 100

Cloud Energy and Utilities Compliance Privacy 100

IBM Big Data Hub

OCTOBER 9, 2023

At the beginning of 2023, according to IBM Security’s “ Threat Intelligence Index ” report, healthcare was in the top 10 most-attacked industries on the planet. UEM is a type of technology that helps manage and secure a variety of endpoints, including mobile devices used in the healthcare ecosystem.

Risk 78

Risk Cybersecurity Data breaches Compliance 78

IBM Big Data Hub

MARCH 20, 2024

For highly regulated industries, these challenges take on an entirely new level of expectation as they navigate evolving regulatory landscape and manage requirements for privacy, resiliency, cybersecurity, data sovereignty and more. This means actively minimizing downtime and closing gaps in the supply chain to remain competitive.

Cloud 74

Cloud Financial Services Risk Business Services 74