IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. Key dates 31 March 2024 – PCI DSS v4.0 GB Signature Performance, Inc. transitioning deadline Version 3.2.1 of the Standard.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

eDiscovery Daily

FEBRUARY 12, 2024

There was also a greater embracing of new ways of getting legal done, with can’t-be-ignored tech like GenAI, data management and handling the ever-growing modern data in discovery cracking open the remaining closed doors to innovation for law firms, government and corporate teams alike.

CMS 41

CMS Phishing Communications Insurance 41

eDiscovery Daily

FEBRUARY 11, 2024

There was also a greater embracing of new ways of getting legal done, with can’t-be-ignored tech like GenAI, data management and handling the ever-growing short message data in discovery cracking open the remaining closed doors to innovation for law firms, government and corporate teams alike.

CMS 41

CMS Phishing Communications Insurance 41

Data Matters

JUNE 23, 2022

Kentucky and Maryland recently continued the trend of state insurance departments adopting some version of the National Association of Insurance Commissioners’ (“NAIC”) Insurance Data Security Model Law. Kentucky Governor Andy Beshear signed House Bill 474 into law, and Maryland Governor Larry Hogan signed SB 207.

Insurance 103

Insurance Security Cybersecurity Information Security 103

Krebs on Security

FEBRUARY 20, 2024

The government says Russian national Artur Sungatov used LockBit ransomware against victims in manufacturing, logistics, insurance and other companies throughout the United States. Europol said two suspected LockBit actors were arrested in Poland and Ukraine, but no further information has been released about those detained.

Ransomware 259

Ransomware Encryption Insurance Manufacturing 259

Security Affairs

FEBRUARY 28, 2024

The US agencies released a report containing IOCs and TTPs associated with the ALPHV Blackcat RaaS operation identified through law enforcement investigations conducted as recently as February 2024. municipal governments, defense contractors, and critical infrastructure organizations).” ” reads the joint advisory.

Ransomware 120

Ransomware Government Insurance Manufacturing 120

Data Protection Report

AUGUST 29, 2022

On July 13, 2022, the Office of the Superintendent of Financial Institutions (OSFI) released its final Guideline B-13 (the Guideline), setting out technology and cyber risk management expectations for all federally regulated financial institutions (FRFIs), such as banks, insurance and trust companies.

Risk 115

Risk Insurance Cybersecurity Government 115

Security Affairs

FEBRUARY 27, 2024

Optum Solutions is a subsidiary of UnitedHealth Group, a leading health insurance company in the United States. “On February 21, 2024, UnitedHealth Group (the “Company”) identified a suspected nation-state associated cyber security threat actor had gained access to some of the Change Healthcare information technology systems. .

Ransomware 106

Ransomware Government Insurance Manufacturing 106

Data Protection Report

OCTOBER 17, 2022

In July of this year, the Office of the Superintendent of Financial Institutions (OSFI) released the final version of its Guideline B-13 (the Guideline), setting out technology and cyber risk management expectations for all federally regulated financial institutions (FRFIs), such as banks, insurance and trust companies.

Risk 62

Risk Insurance Cybersecurity Government 62

IT Governance

MARCH 20, 2024

Possible reasons for this trend change Reasons for organisations deprioritising security may include: Rising costs and economic uncertainty; Geopolitical tensions and uncertainty; and Fewer UK businesses identifying attacks or breaches, according to government data. % Although it’s only March, 2024 has already exceeded this at 30.2

Security 116

Security Data breaches Government Insurance 116

Data Protection Report

JANUARY 4, 2024

Does the national defense bill (National Defense Authorization Act for Fiscal Year 2024, signed on December 22, 2023) require the Department of Defense to develop a “bug bounty” program for certain large artificial intelligence models being integrated into the missions and operations of the Department of Defense? b (within 2 hours).

Privacy 109

Privacy Cybersecurity Artificial Intelligence e-Discovery 109

Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. The Privacy Working Group has been reviewing state insurance privacy protections regarding the collection, ownership, use, and disclosure of information gathered in connection with insurance transactions.

Insurance 78

Insurance Paper Privacy Risk 78

Hunton Privacy

MAY 10, 2022

The CTDPA exempts certain entities, including, for example, state and local government entities, nonprofits, higher education institutions, financial institutions subject to the Gramm-Leach-Bliley Act (“GLB”), and qualifying covered entities and business associates subject to the Health Insurance Portability and Accountability Act (“HIPAA”).

Privacy 118

Privacy Personal data Sales B2B 118

IBM Big Data Hub

MARCH 20, 2024

According to the 2024 IBM X-Force Threat Intelligence Index , attackers are increasingly shifting from ransomware to malware that is designed to steal information, which reinforces the importance of leveraging technology and approach that provides holistic view and end-to-end protection across your entire IT estate, including your partners.

Cloud 81

Cloud Financial Services Risk Business Services 81

eSecurity Planet

MARCH 3, 2023

The first is to rebalance responsibility for cybersecurity away from individuals, small businesses and local governments, and towards “the owners and operators of the systems that hold our data and make our society function, as well as of the technology providers that build and service these systems.”

Cybersecurity 102

Cybersecurity Government Manufacturing Personal data 102

Security Affairs

FEBRUARY 8, 2024

26 key cyber security stats for 2024 that every user should know, from rising cyber crime rates to the impact of AI technolog y. Cyber Insurance: US cyber insurance premiums soared by 50% in 2022, reaching $7.2 RaaS usage is expected to increase by 25% in 2024. Shockingly, 96% of these attacks come through email.

Security 131

Security Phishing IoT Ransomware 131

Data Matters

DECEMBER 11, 2018

The National Association of Insurance Commissioners (NAIC) held its Fall 2018 National Meeting (Fall Meeting) in San Francisco, California, from November 15 to 18, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data. systemic risk of insurers with other parts of the financial system, notably the banking.

Insurance 68

Insurance Paper Risk Big data 68

IT Governance

APRIL 22, 2024

million records from World-Check, a screening database used to screen potential customers for links to illegal activity and government sanctions. Protect AI releases April 2024 vulnerability report Protect AI has published its latest monthly report into security vulnerabilities affecting AI systems.

Data Privacy 52

Data Privacy Privacy Manufacturing Security 52

IT Governance

APRIL 9, 2024

Other databases contained health insurance data, such as patents’ names, dates of birth, addresses and medical data. EyeCare Services Partners exposes more 3.5 The biggest database in the blob contained 3.1 million patients and 1.6 million unique Social Security numbers. Source (New) Manufacturing USA Yes 1.1

Data Privacy 52

Data Privacy Privacy Security Manufacturing 52

IT Governance

MARCH 11, 2024

Source (New) Finance USA Yes 3,494 Woodruff Sawyer Source (New) Insurance USA Yes 3,087 Blackburn College Source (New) Education USA Yes 3,039 CAIRE Inc. Key dates 31 March 2024 – PCI DSS v4.0 Source (New) Transport USA Yes 3,815 Okta Source 1 ; source 2 (Update) Cyber security USA Yes 3,800 Shah Dixit & Associates, P.C.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

IT Governance

MARCH 5, 2024

TB Turtlemint Source (New) Insurance India Yes 1,800,000 Chunghwa Telecom Source (New) Telecoms Taiwan Yes 1.7 Source (New) Engineering Japan Yes >5 TB Array Networks Source (New) Cyber security USA Yes 2.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IBM Big Data Hub

FEBRUARY 8, 2024

The European Parliament reached a provisional agreement on the EU AI Act in December 2023, it is now making its way through the final phases of the legislative process and is expected to rollout in stages in the second half of 2024. Dec 19, 2023 The European AI Act is currently the most comprehensive legal framework for AI regulations.

Government 80

Government Artificial Intelligence Risk Compliance 80

ForAllSecure

MAY 17, 2023

Chris Gray of Deep Watch talks about the view from the inside of a virtual SOC, the ability to see threats against a large number of SMB organizations, and the changes to cyber insurance we’re seeing as a result. VAMOSI: Cybersecurity insurance. cyber insurance as a whole was changing heavily. And why is that?

Insurance 40

Insurance Privacy Ransomware GDPR 40

IT Governance

FEBRUARY 27, 2024

The breached data may include names, Social Security numbers and health insurance information. For some victims, the stolen data also included Social Security numbers and health insurance information. Key date 31 March 2024 – PCI DSS v4.0 Data breached: 4,662,668 individuals’ data. Data breached: 2,350,236 individuals’ data.

Data Privacy 52

Data Privacy Manufacturing Privacy Data breaches 52

IT Governance

JANUARY 16, 2024

Other news UK government accused of being misleading over new encryption laws techUK, a trade association representing more than 1,000 businesses in the technology sector, including Apple and Meta, has accused the UK government of underplaying the significance of the new Investigatory Powers (Amendment) Bill.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

JANUARY 23, 2024

Australian government sets out risk-based system to respond to AI The Australian government has launched its plan to respond to the rise in AI, using a risk-based system to impose proportionate controls on its use. O’Hara & Sons, Inc.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

JANUARY 30, 2024

Compromised data includes victims’ names, addresses, phone numbers and Aadhaar numbers (a 12-digit government identification number). It remains unclear how the data breach occurred, but the attackers apparently suggested it was the result of “exploiting vulnerabilities within government databases of telecommunication systems”.

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

IT Governance

FEBRUARY 6, 2024

Source 1 ; source 2 (New) Professional services USA Yes 11,556 Poder Judicial de Santa Cruz Source (New) Legal Argentina Yes 8,732 J.D.

Data Privacy 88

Data Privacy Privacy Insurance Security 88

Data Matters

DECEMBER 28, 2020

The National Association of Insurance Commissioners (NAIC) held its Fall 2020 National Meeting (Fall Meeting) December 3-9, 2020. NAIC Adopts the Group Capital Calculation Template and Instructions and Related Revisions to the Insurance Holding Company Act. Insurance groups will be exempt from filing a GCC if.

Insurance 68

Insurance Paper Risk Analytics 68

Thales Cloud Protection & Licensing

JANUARY 24, 2024

Protecting Against the Risks and Managing the Complexities of a Quantum World with Thales and IBM Consulting madhav Thu, 01/25/2024 - 11:03 Contributors: Ollie Omotosho - Director, Strategir Partnerships, Thales Antti Ropponen, Head of Data & Application Security Services, IBM Consulting In the world of business, data security is paramount.

Risk 87

Risk Encryption Blockchain Authentication 87

IT Governance

JANUARY 3, 2024

TB exfiltrated Comcast Cable Communications, LLC (Xfinity) Source 1 ; source 2 (New) Telecoms USA Yes 35,879,455 Tecnoquadri Srl Source (New) Manufacturing Italy Yes 33,000,000 Asia Insurance Co.

Data Privacy 107

Data Privacy Insurance Manufacturing Retail 107

Hunton Privacy

FEBRUARY 28, 2024

As reported on the Hunton Employment & Labor Perspectives blog , on February 15, 2024, California lawmakers introduced the bill AB 2930. AB 2930 aims to prevent algorithmic discrimination through impact assessments, notice requirements, governance programs, policy disclosure requirements and providing for civil liability.

Artificial Intelligence 58

Artificial Intelligence Government Risk Financial Services 58

OpenText Information Management

APRIL 2, 2024

In its recent assessment, Time has identified “ungoverned AI” as one of the top risks of 2024. Don’t miss out on the opportunity to transform your organization’s approach to data security, privacy, and governance in the age of GenAI. This underscores the imperative need for organizations to proactively approach their risk analysis.

Risk 76

Risk Privacy Data Privacy Data breaches 76

Data Matters

JULY 28, 2021

Notably, the CPA exempts data “created by a covered entity for the purposes of complying with HIPAA” but does not have an entitywide exemption for Health Insurance Portability and Accountability Act (HIPAA)-regulated entities. The requirement to accept these universal opt-out signals, however, does not go into effect until July 1, 2024.

Privacy 88

Privacy Sales Personal data Compliance 88

IT Governance

DECEMBER 19, 2023

According to Delta Dental’s breach notification, affected personal data included addresses, Social Security numbers, driver’s license numbers or other state identification numbers, passport numbers, financial account information, tax identification numbers, individual health insurance policy numbers and health information.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

Hunton Privacy

FEBRUARY 1, 2024

On January 22, 2024, a draft of the final text of the EU Artificial Intelligence Act (“AI Act”) was leaked to the public. Application The AI Act has been formally approved by the Council on February 2, 2024 and is expected to be approved by the European Parliament within the next month. million or 1.5%

Risk 114

Risk Education Artificial Intelligence Insurance 114

Collibra

JANUARY 18, 2022

Given stringent regulatory stipulations, data sovereignty and data governance requirements, most financial institutions have taken an incremental and multi-pronged approach to cloud migration and data modernization. Comprehensive built-in governance, coupled with machine learning (ML)-enabled data quality and protection capabilities.

Financial Services 52

Financial Services Cloud Artificial Intelligence Government 52