HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

Security Affairs

JANUARY 19, 2024

In 2015, the company controlled 55% of the U.S. “VF will be seeking reimbursement of costs, expenses and losses stemming from the cyber incident by submitting claims to VF’s cybersecurity insurers. American global apparel and footwear company VF Corp revealed that the December data breach impacted 35.5 million customers.

Data breaches 117

Data breaches Passwords Retail Insurance 117

Security Affairs

JUNE 5, 2020

. “As per our researchers, this data leak includes the company’s cyber insurance documents, various contract calculations worksheets, NASA give review rules, and much more.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Ransomware 125

Ransomware Insurance Cybersecurity Security 125

Security Affairs

OCTOBER 4, 2020

Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini. SecurityAffairs – hacking, newsletter).

Security 92

Security Ransomware Insurance Information Security 92

Hunton Privacy

DECEMBER 18, 2017

million to settle charges by the Department of Health and Human Services’ (“HHS”) Office for Civil Rights (“OCR”) that its security practices led to a data breach involving patient information. As reported in BNA Privacy Law Watch , on December 6, 2017, health care provider 21st Century Oncology agreed to pay $2.3

Data breaches 53

Data breaches Insurance Information Security Risk 53

Security Affairs

JULY 6, 2020

Xchanging is a business process and technology services provider and integrator, which provides technology-enabled business services to the commercial insurance industry. Xchanging is primarily an insurance managed services business that operates on a standalone basis.” Pierluigi Paganini. SecurityAffairs – hacking, DXC).

Ransomware 78

Ransomware Insurance Financial Services Manufacturing 78

Security Affairs

JULY 8, 2019

The good news is that La Porte County has a cyber insurance that will cover part of the costs sustained to restore the activity after the attack. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Copyright (C) 2014 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Government 91

Government Insurance Ransomware Cybersecurity 91

Hunton Privacy

JULY 23, 2015

On July 1, 2015, Connecticut’s governor signed into law Public Act No. On July 1, 2015, Connecticut’s governor signed into law Public Act No. A brief summary of the data security requirements for health insurers and state contractors is set forth below: Health Insurers. State Contractors.

Insurance 49

Insurance Data breaches Encryption Authentication 49

Data Matters

FEBRUARY 6, 2019

The lawsuit concerns a May 2015 data breach in which hackers allegedly stole health information relating to 3.9 The complaint also states that the Company’s “information security policies were deficient and poorly documented.” million individuals from the Company’s systems.

Data breaches 83

Data breaches Computer and Electronics Security Insurance 83

Security Affairs

OCTOBER 8, 2020

Leaked data includes 14 folders and 53,555 files divided into the following categories: Passport scans Flight bookings Hotel bookings Email communications between Airlink International Group employees and customers Insurance policy for international travel. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Insurance 125

Insurance Cybersecurity Communications Risk 125

Data Matters

MARCH 12, 2019

The Safeguards Rule specifies that financial institutions subject to the FTC’s jurisdiction must develop, implement, and maintain a comprehensive information security program for handling customer data. Aligning the Safeguards Rule with State Regimes. Other Notable Changes.

Privacy 68

Privacy IT Information Security Insurance 68

IT Governance

OCTOBER 24, 2023

Incident details: Successful phishing attack, breaching records on a server that reached end of life in 2015, though the information itself was “of low-sensitivity and semi-public”. Incident details: Network disruption likely caused by a cyber attack, as “third-party information security experts” are involved.

Data Privacy 105

Data Privacy Privacy Security Data breaches 105

Security Affairs

JUNE 16, 2020

Researchers at cybernews.com recently uncovered an unsecured Amazon Simple Storage Service (S3) bucket that contains more than 36,000 documents, including scans of passports, credit cards, and health insurance cards. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. What data is in the bucket?

Sales 97

Sales Personal data Insurance Marketing 97

Hunton Privacy

JUNE 26, 2017

the nation’s second largest health insurer, reached a record $115 million settlement in a class action lawsuit arising out of a 2015 data breach that exposed the personal information of more than 78 million people. Anthem announced in February 2015 that it had been the target of an external cyber attack.

Data breaches 53

Data breaches Insurance Information Security Compliance 53

Security Affairs

MAY 9, 2020

The attacks targeted a major utility provider, a university, and a government agency in the United States, a health agency in Canada, a health insurance provider, an energy company in Australia, and a European medical publishing company to deliver various malware families. ” continues the report. 111 for command and control.

Government 65

Government Energy and Utilities Insurance Phishing 65

Security Affairs

MAY 1, 2020

Maze Ransomware ransomware operators recently disclose other attacks against different organizations, including IT services giant Cognizant , and cyber insurer Chubb. Please vote Security Affairs for European Cybersecurity Blogger Awards – VOTE FOR YOUR WINNERS [link].

Ransomware 138

Ransomware Encryption Insurance Data breaches 138

Data Matters

JANUARY 8, 2019

The publication, “ Health Industry Cybersecurity Practices: Managing Threats and Protecting Patients ” (HICP), is the result of a government and industry collaboration mandated by the Cybersecurity Act of 2015. The HICP also repeatedly underscores that the practices it outlines are designed to be voluntary.

Cybersecurity 74

Cybersecurity Insurance Phishing Government 74

Security Affairs

JULY 9, 2019

The Maryland Department of Labor suffered a data breach, hackers accessed databases containing personally identifiable information (PII). The security breach was discovered earlier this year, hackers also accessed data stored in the Literacy Works Information System and a legacy unemployment insurance service database.

Data breaches 75

Data breaches Insurance Access Security 75

Security Affairs

DECEMBER 23, 2018

Rather than to notify the data breach to customers and law enforcement as is required by California’s data security breach notification law , the chief of information security Joe Sullivan ordered to pay the ransom and to cover the story destroying any evidence.

Data breaches 84

Data breaches Personal data Insurance Access 84

Security Affairs

AUGUST 20, 2020

Our investigations also show that the suspect had intended to use the data to create marketing leads to offer insurance and credit-related services.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Our investigations do not indicate that any misappropriated data has been used for fraudulent purposes.

Data breaches 124

Data breaches Insurance Marketing Risk 124

Hunton Privacy

JUNE 17, 2019

The settlement resolves a multistate litigation arising out of a May 2015 data breach in which hackers infiltrated WebChart, a web application run by MIE, and stole the electronic Protected Health Information (“ePHI”) of over 3.9 million individuals. failed to encrypt the sensitive ePHI.

Data breaches 58

Data breaches IT Insurance Privacy 58

Security Affairs

JUNE 13, 2020

Experts are also seeing an increase in the number of attacks masquerading as COVID-19 symptom tracking along phishing scams targeting insurance companies because people are looking to buy health insurance. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Google notes. Pierluigi Paganini.

Phishing 79

Phishing Insurance Government Access 79

Security Affairs

JUNE 20, 2019

On Monday, city officials participating to a rapid meeting unanimously voted to use the city’s insurance to pay a ransom of 65 bitcoins (~$603,000). “The payment is being covered by insurance.” Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” continues the AP.

Insurance 90

Insurance Ransomware Encryption Government 90

IT Governance

JANUARY 19, 2018

New laws typically aren’t retroactive, but the ICO’s statement acknowledges the importance of patch management and effective information security management systems. Installing patches and updates when they’re available is one of the simplest ways of staying cyber secure.

GDPR 69

GDPR Risk Insurance Government 69

Security Affairs

APRIL 24, 2020

These images include a screenshot of folders on a SeaChange server compromised by the gang, insurance certificates, a driver’s license, and a cover letter for a proposal sent to the Pentagon. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Ransomware 104

Ransomware Insurance Data breaches Encryption 104

Hunton Privacy

DECEMBER 9, 2015

On December 9, 2015, the Federal Trade Commission announced that Wyndham Worldwide Corporation (“Wyndham”) settled charges brought by the FTC stemming from allegations that the company unfairly failed to maintain reasonable data security practices. The case is FTC v. Wyndham Worldwide Corporation, et al. (2:13-CV-01887-ES-JAD)

Data breaches 49

Data breaches Information Security Insurance Compliance 49

Security Affairs

JULY 15, 2019

” It seems that $100,000 out of $130,000 are being covered by insurance. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. The Ryuk virus got into the backup servers.” The decision is essential to discourage criminal practice. Pierluigi Paganini. SecurityAffairs – La Porte, ransomware).

Ransomware 76

Ransomware Insurance Government Sales 76

Security Affairs

OCTOBER 13, 2019

The hospital chain hasn’t revealed the amount it has paid to the crooks to decrypt the data, it seems that an insurance covered the cost. “We had to gain access to our system quickly and gain the information it was blocking,” chief operating officer Paul Betz told a news conference. ” continues the post.

Ransomware 78

Ransomware Insurance Paper Government 78

IT Governance

APRIL 10, 2019

Implementation status : Transposed, as The Security of Network and Information Systems Law of 2018. Implementation status : Transposed, as the National Cyber Strategy of the Czech Republic for 2015–2020. Implementation status : Transposed, as the Act on Information Security (Official Gazette of the RS, No.

Compliance 62

Compliance Information Security Government Insurance 62

Security Affairs

JUNE 20, 2019

.” Individuals impacted by the data breach were enrolled in the department’s welfare and children services programs at the time of the security incident. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reads the Associated Press. ” concludes the AP. Pierluigi Paganini.

Data breaches 74

Data breaches Phishing Insurance Risk 74

Hunton Privacy

OCTOBER 22, 2018

Anthem”) following Anthem’s 2015 data breach. That breach, affecting approximately 79 million individuals, was the largest breach of protected health information (“PHI”) in history.

Computer and Electronics 63

Computer and Electronics Passwords Data breaches Compliance 63

Security Affairs

SEPTEMBER 1, 2020

.” PIONEER KITTEN hackers to date have focused their attacks against entities in North American and Israeli, while targeted sectors include technology, government, defense, healthcare, aviation, media, academic, engineering, consulting and professional services, chemical, manufacturing, financial services, insurance, and retail. .

Access 94

Access Financial Services Retail Insurance 94

Security Affairs

DECEMBER 15, 2019

Hackensack Meridian Health did not reveal the amount of money it has paid to crooks, according to a statement issued by the hospital it holds insurance coverage for such emergencies. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. ” reported the WSJ. Pierluigi Paganini.

Ransomware 96

Ransomware Computer and Electronics Insurance Access 96

Security Affairs

APRIL 6, 2020

The images include scans of government-issued IDs, retail club membership and loyalty cards, NRA membership cards, gift cards, credit cards with all details exposed (including CVV), medical insurance cards, medical marijuana ID cards, and more. ” ~ Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Retail 106

Retail Encryption Insurance Passwords 106

Hunton Privacy

JUNE 9, 2015

On May 13, 2015, Nevada Governor Brian Sandoval (R-NV) signed into law A.B. 179 (the “Bill”), which expands the definition of “personal information” in the state’s data security law. The law takes effect on July 1, 2015. a medical identification or health insurance identification number; and.

Insurance 49

Insurance Passwords Access Security 49

Security Affairs

JANUARY 21, 2020

The retailer is offering MyIDCare identity theft protection services through ID Experts, it includes 12 months of credit and CyberScan monitoring, a $1,000,000 insurance reimbursement policy, and fully managed id theft recovery services. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->.

Data breaches 107

Data breaches Retail Cloud Insurance 107

Security Affairs

SEPTEMBER 16, 2020

According to the CISA’s report , Iranian hackers from an unnamed APT group are employing several known web shells, in attacks on IT, government, healthcare, financial, and insurance organizations across the United States. Copyright (C) 2014-2015 Media.net Advertising FZ-LLC All Rights Reserved -->. Pierluigi Paganini.

Passwords 93

Passwords Insurance Access Encryption 93