2013, Insurance and IT - Information Management Today

Target Sues Insurer Over 2013 Data Breach Costs

Data Breach Today

NOVEMBER 21, 2019

Lawsuit Claims Insurer Owes Retailer for Coverage of Card Replacement Costs Target has filed a lawsuit against its long-time insurer, ACE American Insurance Co., in an attempt to recoup money it spent to replace payment cards as part of settlements over the retailer's massive 2013 data breach.

Insurance

Insurance Data breaches Retail IT

Who Stole 3.6M Tax Records from South Carolina?

Krebs on Security

APRIL 16, 2024

As it happens, Rescator’s criminal hacking crew was directly responsible for the 2013 breach at Target and the 2014 hack of Home Depot. According to a 2013 report from the Treasury Inspector General’s office, the IRS issued nearly $4 billion in bogus tax refunds in 2012, and more than $5.8 billion in 2013.

Sales

Sales Retail Insurance Access

First American Financial Pays Farcical $500K Fine

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance

Insurance Risk Financial Services Mining

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

New Payment Technologies Should Reduce Demand for Cyber Insurance

Hunton Privacy

NOVEMBER 6, 2014

Hunton & Williams Insurance Litigation & Counseling partner Lon Berk reports: As the demand for cyber insurance has skyrocketed, so too has the cost. One broker estimates that sales in 2014 will double from the $1 billion premium collected in 2013. As these payment technologies become prevalent in the U.S.,

Insurance

Insurance Retail Sales Risk

Puerto Rico Health Insurer Reports Record Fine Following PHI Breach Incident

Hunton Privacy

FEBRUARY 24, 2014

Securities and Exchange Commission that its health insurance subsidiary, Triple-S Salud, Inc. Triple S”), which is Puerto Rico’s largest health insurer, will be fined $6.8 million for a data breach that occurred in September 2013. Triple-S Management Corporation reported in the 8-K it recently filed with the U.S.

Insurance

Insurance Data breaches IT Security

The Week in Cyber Security and Data Privacy: 16–22 October 2023

IT Governance

OCTOBER 24, 2023

Another small firm suffers a serious ransomware attack: Cadre Services gets mauled by AlphV Date of breach: 19 September 2013 (AlphV uploaded first part of data to its website on 19 October 2023). Breached organisation: BHI Energy, providing staffing solutions to the nuclear, fossil, wind, hydro and government energy markets.

Data Privacy

Data Privacy Privacy Security Data breaches

FDIC, FRB and OCC Issue Interagency Guidance on Third-Party Relationships

Hunton Privacy

JUNE 13, 2023

On June 6, 2023, the Federal Deposit Insurance Corporation (“FDIC”), the Board of Governors of the Federal Reserve System (“FRB”) and the Office of the Comptroller of the Currency (“OCC”) issued their final Interagency Guidance on Third-Party Relationships (“Guidance”).

Risk

Risk Insurance Compliance Information Security

Health Insurer Reaches Privacy Settlement with New Jersey Division of Consumer Affairs

Hunton Privacy

FEBRUARY 22, 2017

The settlement stemmed from the theft of two laptops stolen from Horizon headquarters in November 2013, when personnel from outside vendors performing renovations and moving services at Horizon’s Newark headquarters had unsupervised access to the area where company laptops were stored. Under the terms of the settlement, in addition to the $1.1

Insurance

Insurance Privacy Encryption Passwords

Federal Banking Regulators Request Comment on Proposed Guidance for Third-Party Risk Management

Hunton Privacy

JULY 16, 2021

According to the Regulators, the Proposed Guidance largely would adopt the text of the OCC’s 2013 guidance, broadening its scope to include organizations supervised by all three Regulators.

Risk

Risk Insurance Sales Encryption

Hacker Charged With Extorting Online Psychotherapy Service

Krebs on Security

NOVEMBER 3, 2022

In 2013, Kurittu worked on investigation involving Kivimaki’s use of the Zbot botnet, among other activities Kivimaki engaged in as a member of the hacker group Hack the Planet. A 25-year-old Finnish man has been charged with extorting a once popular and now-bankrupt online psychotherapy company and its patients.

Data breaches

Data breaches Records Management Insurance Archiving

Maryland Department of Labor discloses a data breach

Security Affairs

JULY 9, 2019

The security breach was discovered earlier this year, hackers also accessed data stored in the Literacy Works Information System and a legacy unemployment insurance service database. The Maryland Department of Labor announced it has suffered a data breach announced that exposed personally identifiable information. .

Data breaches

Data breaches Insurance Access Security

Fifth Circuit Court of Appeals Vacates MD Anderson HIPAA Penalty

Hunton Privacy

JANUARY 16, 2021

The Court held that OCR’s civil monetary penalty for alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy Rule and HIPAA Security Rule was “arbitrary, capricious, and otherwise unlawful.”. OCR investigated and imposed the $4.3 Read the court’s holding here.

Encryption

Encryption Privacy Insurance Security

Who is Tech Investor John Bernard?

Krebs on Security

SEPTEMBER 25, 2020

Mr. Davies was charged with murder and fraud after he attempted to collect GBP 132,000 in her life insurance payout, but British prosecutors ultimately conceded they did not have enough evidence to convict him. A search on John Clifton Davies and Iryna turned up this 2013 story from The Daily Mirror which says Iryna is John C.

Insurance

Insurance IT

Security Compliance & Data Privacy Regulations

eSecurity Planet

AUGUST 9, 2022

are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA). See the Top Governance, Risk and Compliance (GRC) Tools.

Data Privacy

Data Privacy Compliance Privacy Security

California Consumer Privacy Act: The Challenge Ahead – Consumer Litigation and the CCPA: What to Expect

HL Chronicle of Data Protection

SEPTEMBER 27, 2018

The CCPA creates a limited private right of action for suits arising out of data breaches. At the same time, it also precludes individuals from using it as a basis for a private right of action under any other statute. Here’s what you need to know: The CCPA Provides a Limited Private Right of Action for Data Breach Suits. Code § 1798.150.

Privacy

Privacy Data breaches Insurance IT

Swiss DPA Issues Its 20th Annual Report

Hunton Privacy

JULY 8, 2013

On June 28, 2013, the Swiss Federal Data Protection and Information Commissioner (“FDPIC”) issued its 20th annual Report of Activities (the “Report”), highlighting the FDPIC’s main activities during the period from April 2012 to March 2013. Health Insurance Providers. Businesses that monitor social media (e.g. ,

IT

IT Personal data Insurance Analytics

Automated Security and Compliance Attracts Venture Investors

eSecurity Planet

FEBRUARY 14, 2023

In 2013, Adam Markowitz founded Portfolium, an edtech startup that matched college students and graduates with employers. “I In the case of Lemonade – an online insurance company – it spent over 200 hours on the process. The process for creating the report was time-consuming, manual and costly. Growth has definitely been robust.

Compliance

Compliance Security Cybersecurity Marketing

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

IT Governance

NOVEMBER 28, 2023

9 million records breached through decade-long data leak A former temporary employee of a subsidiary of NTT West (Nippon Telegraph and Telephone West Corp) illegally accessed about 9 million personal data records over the course of a decade (2013 to 2023). This should make it easier for you to quickly find the information you want.

Data Privacy

Data Privacy Privacy Energy and Utilities Data breaches

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

ARMA International

APRIL 28, 2022

I have been a member of the OAR staff at the ANO since March 2013. The plan was to meet the insurance coordinator at the Howard Avenue office at 8:30 a.m. I was aware that I would need documentation on damage and losses for insurance and internal purposes. The insurance coordinator proposed stabilizing in place.

Records Management

Records Management Archiving Insurance Communications

We Infiltrated a Counterfeit Check Ring! Now What?

Krebs on Security

JUNE 30, 2021

You know exactly when and where each of those muggings will take place, and you’ve shared this information in advance with the authorities each day for a year with no outward indication that they are doing anything about it. How frustrated would you be? And then person who deposited the phony check is on the hook for the entire amount.

Insurance

Insurance Education IT Government

CNIL Launches Public Consultation on Draft Standards on Data Processing for Managing Business Activities and Unpaid Invoices

Hunton Privacy

DECEMBER 3, 2018

It therefore intends to cover standard customer data processing activities carried out by any data controller, except (1) health or educational institutions; (2) banking or similar institutions; (3) insurance companies; and (4) operators subject to approval by the French Online Gambling Regulatory Authority.

GDPR

GDPR Personal data Insurance Education

OCR Issues Penalty for Noncompliance with HIPAA Privacy and Security Rules

Hunton Privacy

FEBRUARY 3, 2017

million civil monetary penalty against Children’s Medical Center of Dallas (“Children’s”) for alleged ongoing violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy and Security Rules, following two consecutive breaches of patient electronic protected health information (“ePHI”).

Privacy

Privacy Security Insurance Encryption

Episode 212: China’s Stolen Data Economy (And Why We Should Care)

The Security Ledger

APRIL 27, 2021

Back in 2013, news that hackers stole data on tens of millions of customers of the software maker Adobe dominated the headlines for days. The post Episode 212: China’s Stolen Data Economy (And Why We Should Care) appeared first on The Security Ledger with Paul F. Read the whole entry. » Waiting for Federal Data Privacy Reform?

Data breaches

Data breaches Big data Retail Insurance

California Consumer Privacy Act: The Challenge Ahead – Consumer Litigation and the CCPA: What to Expect

HL Chronicle of Data Protection

SEPTEMBER 27, 2018

The CCPA creates a limited private right of action for suits arising out of data breaches. At the same time, it also precludes individuals from using it as a basis for a private right of action under any other statute. Here’s what you need to know: The CCPA Provides a Limited Private Right of Action for Data Breach Suits. Code § 1798.150.

Privacy

Privacy Data breaches Insurance IT

California Consumer Privacy Act: The Challenge Ahead – Consumer Litigation and the CCPA: What to Expect

HL Chronicle of Data Protection

SEPTEMBER 27, 2018

The CCPA creates a limited private right of action for suits arising out of data breaches. At the same time, it also precludes individuals from using it as a basis for a private right of action under any other statute. Here’s what you need to know: The CCPA Provides a Limited Private Right of Action for Data Breach Suits. Code § 1798.150.

Privacy

Privacy Data breaches Insurance IT

D.C. Circuit’s Article III Standing Decision Deepens Appellate Disagreement

Hunton Privacy

AUGUST 10, 2017

Circuit reversed the dismissal of a putative data breach class action against health insurer CareFirst, Attias v. The court’s opinion also identified allegations of “medical identity theft” that was possible with the theft of health insurance subscriber ID numbers alone. On August 1, 2017, a unanimous three-judge panel for the D.C.

Insurance

Insurance Data breaches Risk Access

HHS Announces HIPAA Settlement with UMass

Hunton Privacy

NOVEMBER 30, 2016

On November 22, 2016, the Department of Health and Human Services (“HHS”) announced a $650,000 settlement with University of Massachusetts Amherst (“UMass”), resulting from alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy and Security Rules. .

Computer and Electronics

Computer and Electronics Insurance Privacy Risk

Obama Administration Releases Incentive Reports on Cybersecurity

Hunton Privacy

AUGUST 7, 2013

On August 6, 2013, the Obama Administration posted links on The White House Blog to reports from the Departments of Commerce , Homeland Security and Treasury containing recommendations on incentivizing companies to align their cybersecurity practices with the Cybersecurity Framework.

Cybersecurity

Cybersecurity Insurance Risk Security

New European Cyber Laws (NISD) – Do you understand the potential impact on your business?

CGI

JANUARY 22, 2016

The Network and Information Systems Directive (NISD) was first proposed in 2013 and is now set to become a reality, with only the final legal processes of the European Parliament and Council to complete, after which it will be published in the EU Official Journal and enter into force. Visibility of breaches will increase.

Insurance

Insurance GDPR Personal data Marketing

FTC Sends Warning Letters to Data Brokers Regarding FCRA Violations

Hunton Privacy

MAY 9, 2013

On May 7, 2013, the Federal Trade Commission announced that it issued letters to ten data broker companies warning that their practices could violate prohibitions against selling consumer information under the Fair Credit Reporting Act (“FCRA”).

Insurance

Insurance Privacy Personal data IT

Ransomware Protection in 2021

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. A ransomware attack is about as bad as a cyber attack can get. Here, then, is a comprehensive look at ransomware, what it is, how to prevent it, and what to do if you become one of its unfortunate victims.

Ransomware

Ransomware Encryption Insurance Cloud

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

Krebs on Security

AUGUST 6, 2020

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S.

Insurance

Insurance Communications Authentication Access

ABBYY Announces Plans to Buy Process Intelligence ISV

Info Source

AUGUST 5, 2019

TimelinePI focuses on the healthcare, financial services, and insurance industries, and offers solutions in areas like human resources, procurement, and robotic process automation (RPA), which is an area of crossover with ABBYY. ABBYY recently announced its intention to acquire TimelinePI , which develops a process intelligence platform.

Analytics

Analytics Marketing Financial Services Insurance

German Ministry Publishes Draft Law for Cybersecurity Breach Notification

Hunton Privacy

MARCH 15, 2013

On March 5, 2013, the German Federal Ministry of the Interior published proposed amendments (in German) to the German Federal Office for Information Security Law. These proposed amendments are significant because they establish a new duty to notify the German Federal Office for Information Security in the event of a cybersecurity breach.

Cybersecurity

Cybersecurity Information Security Insurance Privacy

List of data breaches and cyber attacks in May 2018 – 17,273,571 records leaked

IT Governance

MAY 29, 2018

Insurance startup leaks sensitive customer health data. Bombas notifies consumers of breach going back to 2013. I’m not, though. I’m entirely guileless. I count this month’s total number of breached records to be 17,273,571, which is actually quite low when compared with previous months. Hacker Steals $1.35

Data breaches

Data breaches GDPR Ransomware Passwords

FTC Files Complaint Against Medical Testing Lab for Exposing Consumers’ Personal Data

Hunton Privacy

AUGUST 30, 2013

On August 29, 2013, the FTC announced that it had filed a complaint against LabMD, Inc. Specifically, a LabMD spreadsheet that was found on the P2P network contained names, Social Security numbers, dates of birth, health insurance information and medical treatment codes. LabMD”) for failing to protect consumers’ personal data.

Personal data

Personal data Insurance Information Security Access

Supreme Court Limits Plaintiffs Ability to Cap Damages Prior to Class Certification

Hunton Privacy

MARCH 22, 2013

As reported in the Hunton Employment & Labor Perspectives Blog : On March 19, 2013, in Standard Fire Insurance Co.v. In Knowles , the named plaintiff filed a proposed class action in Arkansas state court alleging defendant Standard Fire failed to include a general contractor fee in its homeowners’ insurance loss payouts.

Insurance

Insurance Privacy IT

2018 eDiscovery Case Law Year in Review, Part 4

eDiscovery Daily

JANUARY 9, 2019

Merryday sustained the defendant’s objection to an order requiring the defendant to produce all documentation related to do-not-call requests received between September 2012 and June 2013 and also required the plaintiff to move for class certification by April 13. Farmers Insurance Exchange , Missouri District Judge Rodney W.

e-Discovery

e-Discovery Metadata Insurance Privacy

DOJ Announces Multinational Efforts to Disrupt Gameover Zeus Botnet

Hunton Privacy

JUNE 20, 2014

Cryptolocker, which first appeared in 2013, encrypts the computer files of its victims and forces victims to pay a ransom to unlock the files. Read our previous blog entry about Gameover Zeus and how cyber insurance may help mitigate risks posed by malware. Read the FTC’s Consumer Information blog post.

Insurance

Insurance Encryption Risk Security

Germany Issues Revised Draft Cybersecurity Law

Hunton Privacy

AUGUST 27, 2014

An earlier version of the law was published in March 2013. According to the Draft Law’s definition, it will apply to companies in the following industry sectors: energy, information technology and telecommunication, transportation and traffic, health, water, food, and finance and insurance. Current Status and Next Steps.

Cybersecurity

Cybersecurity Insurance Information Security Security

UK: The rise of privacy group action risk

DLA Piper Privacy Matters

DECEMBER 7, 2017

The “Google You Owe Us” website indicates that the claimant has however arranged for the third party funder to take out After the Event Insurance so that the insurer pays the winning side’s costs in such circumstances. It is suggested that in the region of 5.4 Various Claimants v Wm Morrisons Supermarket PLC [2017] 3113.

Risk

Risk Privacy GDPR Data breaches

NIST Releases Final Cybersecurity Framework

Hunton Privacy

FEBRUARY 12, 2014

On February 12, 2014, the National Institute of Standards and Technology (“NIST”) issued the final Cybersecurity Framework , as required under Section 7 of the Obama Administration’s February 2013 executive order, Improving Critical Infrastructure Cybersecurity (the “Executive Order”).

Cybersecurity

Cybersecurity Risk Insurance Privacy

FTC Settlement Targets Mobile App Background Checks

Hunton Privacy

JANUARY 16, 2013

In a January 13, 2013 blog post , the Federal Trade Commission’s Bureau of Consumer Protection’s Business Center Blog highlighted the FTC’s recent groundbreaking settlement for violations of the Fair Credit Reporting Act (“FCRA”) in the mobile app context.

Insurance

Insurance Compliance Marketing IT

FTC Settles with Dental Practice Software Provider over Charges of Misleading Consumers with Respect to Data Encryption

Hunton Privacy

JANUARY 13, 2016

According to the complaint, the United States Computer Emergency Readiness Team issued a vulnerability note in June 2013 indicating that the form of data protection used in Dentrix G5 software was a “weak obfuscation algorithm.”

Encryption

Encryption Insurance Data breaches Privacy

Target Sues Insurer Over 2013 Data Breach Costs

Who Stole 3.6M Tax Records from South Carolina?

Webinars

Trending Sources

First American Financial Pays Farcical $500K Fine

Webinars

New Payment Technologies Should Reduce Demand for Cyber Insurance

Puerto Rico Health Insurer Reports Record Fine Following PHI Breach Incident

The Week in Cyber Security and Data Privacy: 16–22 October 2023

FDIC, FRB and OCC Issue Interagency Guidance on Third-Party Relationships

Health Insurer Reaches Privacy Settlement with New Jersey Division of Consumer Affairs

Federal Banking Regulators Request Comment on Proposed Guidance for Third-Party Risk Management

Hacker Charged With Extorting Online Psychotherapy Service

Maryland Department of Labor discloses a data breach

Fifth Circuit Court of Appeals Vacates MD Anderson HIPAA Penalty

Who is Tech Investor John Bernard?

Security Compliance & Data Privacy Regulations

California Consumer Privacy Act: The Challenge Ahead – Consumer Litigation and the CCPA: What to Expect

Swiss DPA Issues Its 20th Annual Report

Automated Security and Compliance Attracts Venture Investors

The Week in Cyber Security and Data Privacy: 20 – 26 November 2023

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

We Infiltrated a Counterfeit Check Ring! Now What?

CNIL Launches Public Consultation on Draft Standards on Data Processing for Managing Business Activities and Unpaid Invoices

OCR Issues Penalty for Noncompliance with HIPAA Privacy and Security Rules

Episode 212: China’s Stolen Data Economy (And Why We Should Care)

California Consumer Privacy Act: The Challenge Ahead – Consumer Litigation and the CCPA: What to Expect

California Consumer Privacy Act: The Challenge Ahead – Consumer Litigation and the CCPA: What to Expect

D.C. Circuit’s Article III Standing Decision Deepens Appellate Disagreement

HHS Announces HIPAA Settlement with UMass

Obama Administration Releases Incentive Reports on Cybersecurity

New European Cyber Laws (NISD) – Do you understand the potential impact on your business?

FTC Sends Warning Letters to Data Brokers Regarding FCRA Violations

Ransomware Protection in 2021

Hacked Data Broker Accounts Fueled Phony COVID Loans, Unemployment Claims

ABBYY Announces Plans to Buy Process Intelligence ISV

German Ministry Publishes Draft Law for Cybersecurity Breach Notification

List of data breaches and cyber attacks in May 2018 – 17,273,571 records leaked

FTC Files Complaint Against Medical Testing Lab for Exposing Consumers’ Personal Data

Supreme Court Limits Plaintiffs Ability to Cap Damages Prior to Class Certification

2018 eDiscovery Case Law Year in Review, Part 4

DOJ Announces Multinational Efforts to Disrupt Gameover Zeus Botnet

Germany Issues Revised Draft Cybersecurity Law

UK: The rise of privacy group action risk

NIST Releases Final Cybersecurity Framework

FTC Settlement Targets Mobile App Background Checks

FTC Settles with Dental Practice Software Provider over Charges of Misleading Consumers with Respect to Data Encryption

Stay Connected