Adam Levin

JUNE 25, 2018

South Carolina became the first state to pass a law requiring all insurance entities to create and maintain a cybersecurity and data breach response program. . The law itself was drafted by the National Association of Insurance Commissioners’ Cybersecurity Working Group, and was adapted from a similar proposal in New York.

Insurance 40

Insurance Cybersecurity Data breaches Government 40

Data Matters

SEPTEMBER 4, 2019

The National Association of Insurance Commissioners (NAIC) held its Summer 2019 National Meeting (Summer Meeting) in New York City from August 3 to 6, 2019. The amended regulation took effect on August 1, 2019, for annuity products and will become effective on February 1, 2020, for life insurance products.

Insurance 68

Insurance Paper Risk Analytics 68

Security Affairs

MAY 9, 2020

Nigerian cyber gang SilverTerrier, specialized in BEC attacks, used COVID-19 lures in recent attacks on healthcare and government organizations. SilverTerrier has been active since at least 2014, it is a collective of over hundreds of individual threat actors. billion in global losses. “Over the past 90 days (Jan.

Government 67

Government Energy and Utilities Insurance Phishing 67

Hunton Privacy

JULY 1, 2022

(“Carnival”), the world’s largest cruise-ship operator, for violations of the Cybersecurity Regulation (23 NYCRR Part 500) in connection with four cybersecurity events between 2019 and 2021, including two ransomware events. .

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

IT Governance

MAY 30, 2019

The cyber security story for May 2019 is much the same as it was last month, with one mammoth breach raising the monthly total. which breached sixteen years’ worth of insurance data. Salesforce customers faced 15-hour delay as org investigates security incident (unknown). UK government commits email privacy blunder (300).

Data breaches 112

Data breaches Personal data Ransomware Phishing 112

IT Governance

JANUARY 9, 2024

LockBit claims responsibility for Capital Health security incident The LockBit ransomware group has claimed responsibility for an attack on Capital Health , a healthcare provider in Pennington, New Jersey, last November. They accessed 41.5 The compromised data allegedly includes names, email addresses and phone numbers.

Data Privacy 75

Data Privacy Privacy Manufacturing Data breaches 75

Krebs on Security

FEBRUARY 20, 2024

First surfacing in September 2019, the gang is estimated to have made hundreds of millions of U.S. The government says Russian national Artur Sungatov used LockBit ransomware against victims in manufacturing, logistics, insurance and other companies throughout the United States. Department of Justice (DOJ).

Ransomware 259

Ransomware Encryption Insurance Manufacturing 259

IT Governance

NOVEMBER 20, 2023

According to OPB, the district didn’t provide details, but said that “our student credentials may have been compromised as part of a security incident”. For more information about the SEC cyber security disclosure rules, register for our free webinar on 30 November.)

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

IT Governance

JUNE 27, 2019

After a rampant start to the year for data breaches and cyber attacks, it’s about time we went one month without at least one massive security incident. June 2019’s total of 39,713,046 breached records is the lowest since May last year – the month that the GDPR (General Data Protection Regulation) came into effect. Hackers stole $1.75

Data breaches 111

Data breaches Personal data Ransomware GDPR 111

IT Governance

OCTOBER 24, 2019

The insurance firm Hiscox found that 61% of organisations were compromised in the past 12 months. Consider that the 2019 SonicWall Cyber Threat Report identified a record-high 10.52 Once organisations understand the scale of the threat facing them, they’ll realise the importance of cyber security. Still undecided?

Data breaches 56

Data breaches GDPR Compliance Insurance 56

IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories.

Data breaches 69

Data breaches GDPR Passwords Personal data 69

Krebs on Security

APRIL 15, 2019

The security experts said Wipro’s customers traced malicious and suspicious network reconnaissance activity back to partner systems that were communicating directly with Wipro’s network. “Wipro has a multilayer security system,” the company wrote. On Friday, Apr. “A total of 44.4 “A total of 44.4

IT 259

IT Insurance Communications Phishing 259

Security Affairs

SEPTEMBER 1, 2020

The Iranian hacker group has been attacking corporate VPNs over the past months, they have been hacking VPN servers to plant backdoors in companies around the world targeting Pulse Secure , Fortinet , Palo Alto Networks , and Citrix VPNs. ” reads the report published by Crowdstrike. ” continues the report. Pierluigi Paganini.

Access 97

Access Financial Services Retail Insurance 97

eSecurity Planet

OCTOBER 18, 2021

The legal complaint [PDF] notes that on July 9, 2019, the day it was hit by a ransomware attack, Springhill Memorial Hospital contended that the event had “not affected patient care.” ” Cyber Insurance No Longer Reliable. Hospital’s Operations Hit by Ransomware. Cyber Regulations Could Bring Fairness.

Ransomware 89

Ransomware Insurance Digital transformation Cybersecurity 89

IT Governance

JULY 6, 2020

Beaming’s Five Years in Cyber Security found that 1.5 million organisations fell victim to cyber crime in 2019. On the plus side, the average cost of breaches has fallen from £26,000 per incident in 2015 to £6,000 in 2019 – although that’s offset by the increase in the overall number of incidents.

Information Security 142

Information Security Phishing IoT Insurance 142

IT Governance

FEBRUARY 26, 2019

I count this month’s total of leaked records to be 692,853,046, bringing 2019’s total to 2,462,038,109. Artsy Alerts Users of Data-Security Breach; Report Claims Hacked Information for Sale. Eskom data leak exposes sensitive customer information – Security researcher. Coffee Meets Bagel notifies users of breach.

Data breaches 109

Data breaches Sales Phishing Ransomware 109

IT Governance

AUGUST 6, 2019

Almost a third of these make it past default security systems, leaving your organisation in a permanently perilous situation. Students and undergraduate applicants to Lancaster University had their personal details stolen in a pair of breaches that were disclosed on 22 July 2019. Your employees receive an average of 4.8

Phishing 79

Phishing Personal data Passwords Access 79

Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. The Privacy Working Group has been reviewing state insurance privacy protections regarding the collection, ownership, use, and disclosure of information gathered in connection with insurance transactions.

Insurance 78

Insurance Paper Privacy Risk 78

The Last Watchdog

APRIL 3, 2019

Identity governance and administration, or IGA , has suddenly become a front-burner matter at many enterprises. Related: Identity governance issues in the age of digital transformation. I had the chance at RSA 2019 to visit with Mike Kiser, global strategist at SailPoint , an Austin, TX-based supplier of IGA services to discuss this.

Digital transformation 104

Digital transformation Insurance Compliance Healthcare 104

Data Matters

AUGUST 30, 2021

Securities and Exchange Commission signaled its continued, high level scrutiny of companies’ public statements related to data security incidents. Securities and Exchange Commission signaled its continued, high level scrutiny of companies’ public statements related to data security incidents.

Cybersecurity 97

Cybersecurity Risk Data Privacy Passwords 97

DLA Piper Privacy Matters

NOVEMBER 3, 2022

The news was swiftly followed up with an announcement from Medibank, Australia’s largest private health insurer, of a breach affecting all of its 3.9 As part of the Australian Government’s response to the public outcry generated by these breaches, a change to the Privacy Act 1988 (Cth) has been introduced into the Australian Parliament.

Privacy 97

Privacy Data breaches Insurance Government 97

The Last Watchdog

MARCH 26, 2019

Pick any company in any vertical – financial services, government, defense, manufacturing, insurance, healthcare, retailing, travel and hospitality – and you’ll find employees, partners, third-party suppliers and customers all demanding remote access to an expanding menu of apps — using their smartphones and laptops.

Security 105

Security Digital transformation Financial Services Risk 105

The Last Watchdog

AUGUST 22, 2019

A core security challenge confronts just about every company today. While the benefits of DX are highly-touted , this shift has also spawned a whole new tier of unprecedented privacy and security challenges. The cloud is kind of dragging this movement along and DevOps and security are center stage, at the moment.”

Digital transformation 117

Digital transformation Compliance Risk Security 117

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. This resolution highlights the SEC’s continued focus on cybersecurity.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

John Battelle's Searchblog

JANUARY 25, 2019

My current work is split between two projects: One has to do with data governance, the other political media. And second… Governance. Government – well for sure, I’d wager that’s increased given who’s been running the country these past two years. But Governance? Data Governance. We’ll start with Governance.

Government 92

Government IT Marketing ROT 92

Data Protection Report

APRIL 7, 2022

CafePress included in its email responses to consumers’ commonly asked questions, “CafePress.com also pledges to use the best and most accepted methods and technologies to insure [sic] your personal information is safe and secure.” The company fixed the vulnerability but did not notify affected individuals until September of 2019.

Privacy 112

Privacy Compliance Insurance Data collection 112

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

IT Governance

MARCH 2, 2020

At first glance, February appears to be a big improvement cyber security-wise compared to the start of the year. South Carolina-based United Health notifies patients of 2019 data breach (36). Puerto Rico government loses $2.6 Wake County, NC, learns that third party breached government employee info (1,900).

Data breaches 145

Data breaches Ransomware Phishing Personal data 145

Security Affairs

JUNE 20, 2019

The internal IT staff has been working with security consultants to restore the operations, but according to them the only way to decrypt the information was to pay the ransom. . On Monday, city officials participating to a rapid meeting unanimously voted to use the city’s insurance to pay a ransom of 65 bitcoins (~$603,000).

Insurance 93

Insurance Ransomware Encryption Government 93

Data Matters

DECEMBER 11, 2018

The National Association of Insurance Commissioners (NAIC) held its Fall 2018 National Meeting (Fall Meeting) in San Francisco, California, from November 15 to 18, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data. systemic risk of insurers with other parts of the financial system, notably the banking.

Insurance 68

Insurance Paper Risk Big data 68

Data Matters

SEPTEMBER 3, 2020

The National Association of Insurance Commissioners (NAIC) held its Summer 2020 National Meeting (Summer Meeting) from July 27 to August 14, 2020. NAIC Considers Comments to the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act . GCC Template and Instructions.

Insurance 68

Insurance Paper Artificial Intelligence Big data 68

ARMA International

JANUARY 30, 2020

Notably, in its opening paragraph, the missive cites “unintended security consequences and increased risk to the joint force and mission.”. As quoted in the Military Times article [3] , citing security risks, Cmdr. December 23, 2019. [2] December 20, 2019. [3] December 24, 2019. [4]. December 27, 2019. [5]

Military 106

Military Privacy Risk Insurance 106

Security Affairs

FEBRUARY 4, 2020

“MIS worked over the weekend with the city’s cybersecurity insurer “to develop a detailed plan to restore and recover systems without spreading the ransomware,” according to a statement from Powell. “We The post The city of Racine was offline following a ransomware attack appeared first on Security Affairs. Pierluigi Paganini.

Ransomware 71

Ransomware Government Insurance Cybersecurity 71

Security Affairs

JUNE 26, 2019

“On Monday June 10th, 2019, the City of Lake City was targeted by a malware attack known as ‘Triple Threat.'” Crooks made a request of a ransom a week after the initial infection, they contacted the Lake City’s insurance provider, the League of Cities, which negotiated a payment of 42 bitcoins.

Ransomware 97

Ransomware Insurance Government IT 97

Security Affairs

OCTOBER 13, 2019

The hospital chain hasn’t revealed the amount it has paid to the crooks to decrypt the data, it seems that an insurance covered the cost. “As time goes by, and we determine the full impact of this, we will be very grateful we had cyber insurance in place.” ” continues the post. Pierluigi Paganini.

Ransomware 79

Ransomware Insurance Paper Government 79

KnowBe4

MARCH 28, 2023

Security awareness training still has a place to play here." Email and other elements of software infrastructure offer built-in fundamental security that largely guarantees we are not in danger until we ourselves take action," Tyson writes. Is the email enticing you to click on a link?' I'm being asked to do something here.'"

Phishing 78

Phishing Security awareness Insurance Cybersecurity 78

Krebs on Security

JULY 27, 2020

In 2019, Dun & Bradstreet saw more than a 100 percent increase in business identity theft. based cyber intelligence firm Hold Security has been monitoring the communications between and among a businesses ID theft gang apparently operating in Georgia and Florida but targeting businesses throughout the United States.

Energy and Utilities 352

Energy and Utilities Computer and Electronics Insurance Risk 352