Hunton Privacy

JULY 1, 2022

(“Carnival”), the world’s largest cruise-ship operator, for violations of the Cybersecurity Regulation (23 NYCRR Part 500) in connection with four cybersecurity events between 2019 and 2021, including two ransomware events. . NYDFS also found that Carnival had failed to implement basic protocols to prevent data breaches.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Data Matters

JULY 30, 2018

In October 2017, the National Association of Insurance Commissioners (NAIC) adopted an Insurance Data Security Model Law. On May 3, 2018, South Carolina became the first state to enact this Model Law, in the form of the South Carolina Insurance Data Security Act (H.B. See CT Gen Stat § 38a-999b (2015) ; 23 NYCRR 500.

Insurance 60

Insurance Security Cybersecurity Data breaches 60

Krebs on Security

JANUARY 29, 2021

The unprecedented volume of unemployment insurance fraud witnessed in 2020 hasn’t abated, although news coverage of the issue has largely been pushed off the front pages by other events. Another 17 percent of claims — nearly $20 billion more – are suspected fraud. In a notice posted Jan. 28 , the U.S.

Insurance 304

Insurance Personal data Authentication IT 304

IT Governance

JANUARY 9, 2020

Cyber insurance has in some regions encouraged victims to pay as it is cheaper than remediation in some cases. Despite the rise in sophisticated attacks, 2020 will continue to see newbies and unskilled attackers using toolkits from the dark web to launch scams (such as sexploitation), and phishing and ransomware attacks.

Security 98

Security IoT Phishing Ransomware 98

Information Governance Perspectives

MARCH 10, 2020

Welcome to the AIIM 2020 Keynote Session Tomorrow’s Jobs Today, thinking beyond information management. I’m Rafael Moscatel, I’m an AIIM member, and I’ve had the distinct pleasure of attending several of its thought leadership events over the past few years and had the opportunity to meet and become friends with many of you.

Insurance 52

Insurance Blockchain Privacy Big data 52

IT Governance

DECEMBER 14, 2021

According to IBM’s Cost of a Data Breach Report 2020 , organisations spend £2.9 You’ll receive cyber insurance cover ?. Many cyber-security-as-a-service offerings include cyber insurance as part of the package. This includes cyber attacks and data breaches, as well as other events that impact IT systems and networks.

Security 131

Security Insurance Data breaches Information Security 131

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. NAIC Adopts Revised Risk-Based Capital Bond Factors for Life Insurers.

Insurance 88

Insurance e-Delivery Paper Sales 88

eSecurity Planet

OCTOBER 18, 2021

The legal complaint [PDF] notes that on July 9, 2019, the day it was hit by a ransomware attack, Springhill Memorial Hospital contended that the event had “not affected patient care.” ” Nicko died nine months later, on April 16, 2020. .” ” Nicko died nine months later, on April 16, 2020.

Ransomware 94

Ransomware Insurance Digital transformation Cybersecurity 94

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. NSC), relating to violations of three different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2020. NYDFS Cybersecurity Regulation.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

Hunton Privacy

FEBRUARY 22, 2021

The NYDFS learned of the threat after receiving reports from auto insurers that cybercriminals were targeting their premium quote sites to steal driver’s license numbers. As we previously reported , NYDFS issued guidance regarding cybersecurity during the pandemic in April 2020.

Financial Services 86

Financial Services Insurance Cybersecurity Analytics 86

HL Chronicle of Data Protection

FEBRUARY 25, 2020

It applies to any “Covered Entity,” which is defined broadly to include “any Person operating under or required to operate under a license, registration, charter, certificate, permit, accreditation or similar authorization under the Banking Law, the Insurance Law or the Financial Services Law.”

Cybersecurity 104

Cybersecurity Financial Services Data breaches Insurance 104

Security Affairs

NOVEMBER 29, 2020

The Group’s insurance coverage for cyber risks totals €30 million.” The IT services provider said that sales activity for the fourth quarter should not be significantly affected by this event. and 5.0% (previously ‘between -2% and -4%’) for the financial year 2020. ” the company added. Pierluigi Paganini.

Ransomware 98

Ransomware Insurance Sales Cybersecurity 98

The Last Watchdog

OCTOBER 29, 2018

the Health Insurance Portability and Accountability Act (HIPAA)), the answer is generally that a company should implement a “reasonable data privacy and security program” under all circumstances. The technologies existing in 2018 will undoubtedly differ from those that exist in 2020. Insurability.

Security 164

Security Data Privacy Privacy Data breaches 164

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

Thales Cloud Protection & Licensing

APRIL 11, 2023

Funny enough, many a CIO would already have been preaching this pre-2020. Retail companies, insurance companies, restaurants, and banks, to name a few, and even public sector organizations serving consumers or citizens were forced to adapt. We should not need a life-changing event like a pandemic to change our course.

B2C 87

B2C B2B Retail Insurance 87

Security Affairs

APRIL 8, 2021

It’s impossible to determine if the two events are connected to the breach. January 2020, the cardshop’s records were leaked on an underground forum. The comparison with the database leaked in January 2020 revealed that the number of Swarmshop users has grown by more than 2.5x ever since.

Passwords 108

Passwords Insurance Personal data Sales 108

Hunton Privacy

APRIL 1, 2020

Join us on April 7, 2020, for an in-depth webinar on Managing Critical Infrastructure Workforce During the COVID-19 Pandemic. Our featured group of speakers will discuss the legal, medical and practical issues that critical infrastructure companies are facing during the current COVID-19 pandemic. Register for this program now.

Insurance 71

Insurance Privacy Security 71

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. Proper disposal processes minimize the amount of NPI accessible to an unauthorized third party during a Cyber Event.”

Cybersecurity 52

Cybersecurity Personal data Risk Financial Services 52

Adam Levin

JUNE 30, 2020

We’re not even halfway through 2020, and already it’s been a record-breaking year for ransomware attacks. In the same survey, 35 percent thought CEOs should be fined for a cyber failure, and 30 percent wanted to see a CEO lose his or her right to run any company following a serious cyber event. What can CEOs do?

Ransomware 74

Ransomware Insurance Cybersecurity Manufacturing 74

erwin

APRIL 11, 2019

Some suggest the California Consumer Privacy Act (CCPA), which takes effect January 1, 2020, sets a precedent other states will follow by empowering consumers to set limits on how companies can use their personal information. Compliance is an on-going requirement, so efforts to become compliant should not be treated as static events.

GDPR 100

GDPR e-Discovery Compliance Metadata 100

eSecurity Planet

SEPTEMBER 14, 2022

billion in reported losses, up from 2020’s 791,790 complaints and $4.2 Finance and insurance finished a close second at 22.4%. Finance and insurance companies were particularly vulnerable to the sort of phishing scams we’re talking about. In 2020 alone, 79 ransomware attacks were conducted against government entities in the U.S.,

Energy and Utilities 118

Energy and Utilities Phishing Blockchain Cybersecurity 118

Krebs on Security

JULY 27, 2020

For 2020, the company estimates an overall 258 percent spike in the crime. She shared with me a copy of the lease, which included a fraudulent ID and even a vehicle insurance card for a Land Cruiser we got rid of like 15 years ago. In 2019, Dun & Bradstreet saw more than a 100 percent increase in business identity theft.

Energy and Utilities 357

Energy and Utilities Computer and Electronics Insurance Risk 357

eSecurity Planet

FEBRUARY 16, 2021

Just in 2020, the SolarWinds hack could’ve been prevented for organizations that promptly patch software. In the event of a successful breach, your team must be ready to restore systems and data recovery. Ransomware attacks increased by 130% in 2020 ( Beazley Group ). Zero Trust. Rapid Response Testing. Sandbox Testing.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

HL Chronicle of Data Protection

MARCH 16, 2020

On Tuesday, 3 March 2020, we welcomed our financial services clients in London to a lively panel event, which covered the multitude of issues which arise in a cybersecurity incident. Peter Marta. Arwen Handley. Philip Parish. Nicola Fulford.

Cybersecurity 59

Cybersecurity Financial Services Risk Insurance 59

Reltio

MARCH 11, 2019

The event consisted of over 40 sessions and panels featured more than 60 speakers across industries. Reltio was the Diamond sponsor and host of the event. This year the event offered three tracks – Modern Data Management, Personalize Customer 360 , and Healthcare & Life Sciences. This year’s theme was “ Organize Master Data.

Digital transformation 40

Digital transformation Financial Services Data science Retail 40

Thales Cloud Protection & Licensing

JULY 21, 2022

However, this stance indicates a lack of understanding of the effects of all the parties involved, such as cyber insurance underwriters, incident response firms, government regulations, and ransomware attribution. For many organizations, paying the ransom can be less damaging than risking any additional impacts.

Energy and Utilities 71

Energy and Utilities Ransomware IoT Risk 71

IT Governance

SEPTEMBER 1, 2022

In other news… Florida Orthopaedic Institute settles lawsuit after 2020 ransomware incident Brazilian police launch investigation targeting Lapsus$ group South Korea to ban 16 unregistered overseas crypto exchanges. announces security breach (unknown) The Country Club at Woodfield, Inc.

Data breaches 116

Data breaches Ransomware Energy and Utilities Phishing 116

Data Matters

FEBRUARY 25, 2021

This follows the FCA’s announcement in its 2020-21 business plan that payment services were one of its main supervisory priorities 1 and its temporary guidance of July 9, 2020, on prudential risk management and safeguarding in light of the COVID-19 pandemic ( Temporary COVID Guidance ). 1 See further our Update of May 4, 2020.

Authentication 68

Authentication Paper Risk Insurance 68

ARMA International

APRIL 18, 2022

Certain sectors, such as banking, financial services, health, and insurance have their own data protection and privacy requirements. This may also include the use of event codes that are subjective or difficult to define in practice or retention periods that are correct in theory but impossible to implement. Bill C-11, Sec.

Personal data 100

Personal data GDPR Privacy Records Management 100

Data Protection Report

JANUARY 7, 2019

Entities covered by the Regulation, which includes not only banks and insurers, but also other financial service institutions and licensees regulated by the DFS that utilize third-party service providers, will be required to implement third-party risk management programs by March 1. Upcoming certifications.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

Data Matters

FEBRUARY 10, 2022

Stay Up to Date on SEC Alerts Related to Cybersecurity: For instance, in 2020 the Division of Examinations published three alerts related to cybersecurity (OCIE Cybersecurity and Resiliency Practices; Ransomware Alert; and Safeguarding Client Accounts against Credential Compromise). 27, 2020), available at [link].

Cybersecurity 88

Cybersecurity Marketing Risk Compliance 88

Adam Levin

MARCH 16, 2020

That is exponentially more expensive than other cyber events. The loss of time, worker focus and business opportunities can be catastrophic is the aftermath of an attack, and is yet another reason no company should be without a robust cyber insurance policy in place. billion in BEC scam-related losses the year before.

Phishing 52

Phishing Insurance Data breaches Personal data 52

eSecurity Planet

MAY 5, 2021

It first acquired cloud security posture management (CSPM) company DivvyCloud in 2020. Arctic Wolf raised $200 million in Series E funding in 2020, raising its valuation to a total of $1.3 The vendor acquired Respond Software, an XDR platform, in 2020 for $186 million. for $50 million. Full access to Rapid7 InsightIDR.

Cloud 57

Cloud Compliance Artificial Intelligence Analytics 57

Data Matters

MAY 9, 2019

The National Association of Insurance Commissioners (NAIC) held its Spring 2019 National Meeting (Spring Meeting) in Orlando, Florida, from April 6 to 9, 2019. ceding insurer could be eligible for the same reduced collateral requirements that would apply to qualifying EU reinsurers under the revised CFR Model Laws.

Insurance 68

Insurance Blockchain Big data Risk 68

eSecurity Planet

SEPTEMBER 10, 2021

In the event of a ransomware attack, an organization could lose access to part or all of its network data and systems, blocking further work. Coveware reported earlier this year the average downtime for ransomware victims jumped from 15 days in 2019 to 21 days in 2020. Extended Downtime Can Be Deadly.

Ransomware 108

Ransomware Encryption Cybersecurity Access 108

Security Affairs

FEBRUARY 8, 2024

Cyber Insurance: US cyber insurance premiums soared by 50% in 2022, reaching $7.2 Healthcare Spending: From 2020 to 2025, the healthcare sector plans to spend $125 billion on cyber security to tackle its vulnerability. Without any further ado, let’s have a look at the 7 most recent cyber security events.

Security 123

Security Phishing IoT Ransomware 123