Data Protection Report

NOVEMBER 8, 2023

On November 1, 2023, the New York Department of Financial Services (“NYDFS”) released the finalized amendments of Part 500 of its cybersecurity regulations. These revisions represent the most significant modifications since the enactment of the rules in March 2017. One Year from Publication in State Register 500.4:

Financial Services 109

Financial Services Cybersecurity Compliance Government 109

Security Affairs

JANUARY 4, 2021

defense contractors , financial services firms, and a national data center in Central Asia. The hackers used the Windows drive encryption tool BitLocker to lock the servers. “Earlier this year, Security Joes and Profero responded to an incident involving ransomware and the encryption of several core servers.

Ransomware 122

Ransomware Encryption Financial Services Cybersecurity 122

eSecurity Planet

SEPTEMBER 10, 2021

Does the provider encrypt data while in transit and at rest? Specifically, these tools address a number of security requirements, including patch management , endpoint encryption, VPNs , and insider threat prevention among others. Encrypt data in motion and at rest. Encryption is a key part of any cloud security strategy.

Cloud 102

Cloud Security Encryption Risk 102

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Third-party service provider risk management program.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

Security Affairs

SEPTEMBER 10, 2018

defense contractors and financial services firms worldwide. In March 2018, security experts at Kaspersky Lab have observed an attack powered by the Chinese APT group, the experts speculate the campaign was started in the fall of 2017. ” reads the analysis published by Kaspersky. ” concludes Kaspersky.

Communications 73

Communications Financial Services Phishing Encryption 73

eSecurity Planet

FEBRUARY 16, 2021

All of your files are encrypted with RSA-2048 and AES-128 ciphers.” ” Or you might see a readme.txt stating, “Your files have been replaced by these encrypted containers and aren’t accessible; you will lose your files on [enter date] unless you pay $2500 in Bitcoin.” Forensic Analysis.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

Data Protection Report

OCTOBER 1, 2019

This change is consistent with the New York Attorney General’s position since 2017, which found that many popular websites permitted purchases to be made with credit cards without requiring security codes. Biometric information that is used to authenticate or ascertain the individual identity.

Security 40

Security Financial Services Passwords Risk 40