Data Matters

MARCH 12, 2019

Of particular note, the Safeguards Rule NPRM proposes to align the FTC’s requirements with those of the New York Department of Financial Services (“NYDFS”), as found in its cybersecurity regulations, and the National Association of Insurance Commissioners (“NAIC”), as found in its insurance data security model law.

Privacy 68

Privacy IT Information Security Insurance 68

HL Chronicle of Data Protection

MAY 13, 2019

For example, the New York Department of Financial Services (‘NYDFS’) in March 2017 issued its Cybersecurity Regulation (23 NYCRR 500) (‘the NYDFS Cybersecurity Regulation’), a groundbreaking and far-reaching regulatory regime focused on financial institutions licensed in New York, including insurance companies.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

HL Chronicle of Data Protection

MARCH 14, 2019

The proposed Rule will also require multi-factor authentication for any individual accessing customer information, but, unlike the NYDFS which imposed a similar requirement in the Cybersecurity Regulation, the FTC declined to endorse text messages as a permitted second factor.

Privacy 40

Privacy Risk Cybersecurity Information Security 40

Krebs on Security

DECEMBER 14, 2023

That story about the Flashback author was possible because a source had obtained a Web browser authentication cookie for a founding member of a Russian cybercrime forum called BlackSEO. According to leaked ChronoPay emails from 2010, this domain was registered and paid for by ChronoPay. ru under the handle “ r-fac1.”

Computer and Electronics 234

Computer and Electronics Marketing Sales Healthcare 234

Security Affairs

NOVEMBER 8, 2021

.” Experts also detailed the KdcSponge credential stealer, which hooks into the Windows LSASS API from within the LSASS process to steal credentials from inbound attempts to authenticate via the Kerberos service (“KDC Service”). The APT group has been active since 2010, targeted organizations worldwide, including U.S.

Communications 110

Communications Blockchain Passwords Financial Services 110

The Last Watchdog

FEBRUARY 25, 2019

Not long afterwards, in about the 2010 time frame, IAM vendors first arrived on the scene, including Optimal IdM, Centrify, Okta and CyberArk, followed by many others. The IAM vendors took single sign-on to the next level, adding multi-factor authentication and other functionalities.

Access 169

Access Government Authentication Data breaches 169

eSecurity Planet

MAY 11, 2023

The concept of zero trust has been around since 2010, when Forrester Research analyst John Kindervag created the zero trust security model. The only exception, it seems, has been cloud service providers, who boast an enviable record when it comes to cybersecurity, thanks to rigorous security practices like Google’s continuous patching.

Cloud 107

Cloud IT Insurance Authentication 107