Computer and Electronics, Insurance and IT - Information Management Today

Maryland Court Finds Coverage for Lost Data and Slow Computers After Ransomware Attack

Hunton Privacy

FEBRUARY 5, 2020

As previously posted on our Hunton Insurance Recovery blog , a Maryland federal court awarded summary judgment to policyholder National Ink in National Ink and Stitch, LLC v. This is significant because it demonstrates that insureds can obtain insurance coverage for cyber attacks even if they do not have a specific cyber insurance policy.

Computer and Electronics

Computer and Electronics Ransomware Insurance Access

LCMHS hospital suffered a Ransomware attack at Louisiana hospital that impacted 270,000 patients

Security Affairs

DECEMBER 29, 2022

The security breach took place on October 21, 2022, when the internal security team detected unusual activity on its computer network. Health insurance information. The attackers had no access to electronic medical records. LCMH’s electronic medical record was not accessible to the unauthorized party.”

Ransomware

Ransomware Computer and Electronics Data breaches Insurance

Court Rules Fraud Involving a Computer Is Not ‘Computer Fraud’ under Crime Protection Policy

Hunton Privacy

OCTOBER 25, 2016

18, 2016), that a crime protection insurance policy does not cover loss resulting from a fraudulent email directing funds to be sent electronically to the imposter’s bank account because the scheme did not constitute “computer fraud” under the policy. Great American Ins. No 15-20499 (5th Cir. Background. Read the full alert.

Computer and Electronics

Computer and Electronics Insurance IT Cybersecurity

Webinars

Peak Performance: Continuous Testing & Evaluation of LLM-Based Applications

MORE WEBINARS

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

MARCH 17, 2024

France Travail data breach impacted 43 Million people Scranton School District in Pennsylvania suffered a ransomware attack Lazarus APT group returned to Tornado Cash to launder stolen funds Moldovan citizen sentenced in connection with the E-Root cybercrime marketplace case UK Defence Secretary jet hit by an electronic warfare attack in Poland Cisco (..)

Data breaches

Data breaches Security Computer and Electronics Ransomware

Understanding HIPAA: A Guide to Avoiding Common Violations

Armstrong Archives

AUGUST 25, 2023

The Health Insurance Portability and Accountability Act (HIPAA) ensures individuals’ health data protection and privacy. This includes insurance companies, nurses, and doctors. Healthcare has become more interconnected than ever, making it important to protect patients’ sensitive information.

Computer and Electronics

Computer and Electronics Insurance Compliance Risk

Delaware County, Pennsylvania, opted to pay 500K ransom to DoppelPaymer gang

Security Affairs

NOVEMBER 30, 2020

“Sources said the county is in the process of paying the $500,000 ransom as it’s insured for such attacks.” “The County of Delaware recently discovered a disruption to portions of its computer network. The incident was disclosed on Monday and now Delaware County has paid a $500,000 ransom.

Computer and Electronics

Computer and Electronics Ransomware Insurance Encryption

Information Management in the Not-So-Distant Future of Health Care

AIIM

APRIL 12, 2022

The classic example is the insurer that won’t pay for care that a doctor determines a patient needs. Insurers are about profit; doctors are about delivering the best care. Today, if you have a computer, you have a doctor – videoconference doctor visits routinely complement in-person ones. Electronic Health Record.

Computer and Electronics

Computer and Electronics Insurance Marketing Paper

Largest hospital system in New Jersey was hit by ransomware attack

Security Affairs

DECEMBER 15, 2019

Hackensack Meridian Health did not reveal the amount of money it has paid to crooks, according to a statement issued by the hospital it holds insurance coverage for such emergencies. ” The hospitals were forced to reschedule nonemergency surgeries and doctors and nurses were not able to access electronic records. .

Ransomware

Ransomware Computer and Electronics Insurance Access

First Multistate HIPAA Data Breach Lawsuit May Signal Increased State Interest in Data Security Enforcement

Data Matters

FEBRUARY 6, 2019

On December 3, 2018, twelve attorneys general (“AGs”) jointly filed a data breach lawsuit against Medical Informatics Engineering and its subsidiary, NoMoreClipboard LLC (collectively “the Company”), an electronic health records company, in federal district court in Indiana. See Indiana v. Informatics Eng’g, Inc. , 3:18-cv-00969 (N.D.

Data breaches

Data breaches Computer and Electronics Security Insurance

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

IT Governance

JULY 1, 2021

We found a comparatively low 9,780,931 breached records from publicly disclosed security incidents in June 2021. But don’t be fooled by that number – it comes from 106 incidents, which is roughly average for the year. June’s figures bring the annual running total of security incidents to 729 and the total number of breached records to 3,947,030,094.

Data breaches

Data breaches Ransomware Computer and Electronics Retail

Business ID Theft Soars Amid COVID Closures

Krebs on Security

JULY 27, 2020

But the same crime can be far more costly and damaging when thieves target small businesses. Unfortunately, far too many entrepreneurs are simply unaware of the threat or don’t know how to be watchful for it. In 2019, Dun & Bradstreet saw more than a 100 percent increase in business identity theft. ” PHANTOM OFFICES. .”

Energy and Utilities

Energy and Utilities Computer and Electronics Insurance Risk

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

IT Governance

MAY 3, 2018

However, a large part of the loss has been offset by the company’s cyber insurance: Equifax announced that it maintains “$125 million of cybersecurity insurance coverage, above a $7.5 million deductible”, and, since announcing the cyber security incident in September 2017, has “recorded insurance recoveries of $60.0

Computer and Electronics

Computer and Electronics Insurance Data breaches Information Security

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

ARMA International

APRIL 28, 2022

I have overseen two significant projects: an electronic discovery production and disaster response and recovery effort. Covering all computers and file cabinets in plastic sheeting. . The plan was to meet the insurance coordinator at the Howard Avenue office at 8:30 a.m. It was grim.

Records Management

Records Management Archiving Insurance Communications

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

The representative did a “visual review” of the buckets, as USPS’s internal policy is not to plug any USB sticks into a computer (not all bad practice, eh?), Social insurance numbers. The law will apply to consumer electronics from 2020. Henderson ISD, a school district in Texas, recently lost more than $600,000 in a BEC attack.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

IT Governance

OCTOBER 30, 2018

The representative did a “visual review” of the buckets, as USPS’s internal policy is not to plug any USB sticks into a computer (not all bad practice, eh?), Social insurance numbers. The law will apply to consumer electronics from 2020. Henderson ISD, a school district in Texas, recently lost more than $600,000 in a BEC attack.

Data breaches

Data breaches Computer and Electronics Passwords Insurance

HHS Announces HIPAA Settlement with UMass

Hunton Privacy

NOVEMBER 30, 2016

On November 22, 2016, the Department of Health and Human Services (“HHS”) announced a $650,000 settlement with University of Massachusetts Amherst (“UMass”), resulting from alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy and Security Rules. .

Computer and Electronics

Computer and Electronics Insurance Privacy Risk

The U.S. Office of the Comptroller of the Currency Seeks Comment on Digital Innovation by Banks

Data Matters

JUNE 12, 2020

electronic payments, check capture and online banking), the OCC lists some of the new technologies, the implementation of which may be hindered by ambiguous, burdensome or inflexible rules, such as blockchain, artificial intelligence, biometrics, cloud computing and big data/analytics. Comments are due by August 3, 2020. 31, 2020).

Artificial Intelligence

Artificial Intelligence Blockchain Financial Services Computer and Electronics

OPC reconsiders its approach to cross-border data transfers with the Equifax decision

Data Protection Report

MAY 15, 2019

Any organization governed by the federal Personal Information Protection and Electronic Documents Act (PIPEDA) will have to re-evaluate and likely adjust its approach to such cross-border data transfers, possibly affecting its outsourcing and cloud computing relationships with vendors and related companies. s systems for four months.

IT

IT Computer and Electronics Cloud Privacy

What IG Professionals Should Know About the Internet of Bodies

ARMA International

FEBRUARY 21, 2020

Another common name for the IoB is embodied computing , where the human body is used as a technology platform. Wearable technology began as any kind of electronic device designed to be worn on the user’s body. In the ingestibles category are Bluetooth electronic pills that monitor the inner workings of the human body.

Computer and Electronics

Computer and Electronics Privacy Artificial Intelligence IoT

Will Lawyers Ever Embrace Technology?: eDiscovery Best Practices, Part Four

eDiscovery Daily

NOVEMBER 25, 2018

Craig Ball once made a great point in responding to a post of mine about educating lawyers when he said “ We not only need to persuade lawyers to take the plunge, we need to insure there’s a pool for them to jump into. Do they go to a community night course on computers? Pursue online education? Wait for the next Georgetown Academy?

e-Discovery

e-Discovery Computer and Electronics Education Mining

OCR Enters into Record Settlement with Anthem

Hunton Privacy

OCTOBER 22, 2018

Three years ago, in February 2015, OCR opened a compliance review of Anthem, the nation’s second largest health insurer, following media reports that Anthem had suffered a significant cyberattack. prevent unauthorized access to ePHI. submit annual compliance reports for a period of two years. history.

Computer and Electronics

Computer and Electronics Passwords Data breaches Compliance

Podcast Episode 119: EFF on Expanding Researchers Rights and AT&T talks IoT Security Fails

The Security Ledger

NOVEMBER 6, 2018

In this episode of the podcast, #119: Electronic Frontier Foundation General Counsel Kurt Opsahl joins us to talk about the Coders’ Rights Project. In this episode of the podcast, #119: Electronic Frontier Foundation General Counsel Kurt Opsahl joins us to talk about the Coders’ Rights Project. Read the whole entry. »

IoT

IoT Computer and Electronics Security Insurance

List of data breaches and cyber attacks in December 2020 – 148 million records breached

IT Governance

JANUARY 4, 2021

In other news… Federal agencies warn that hackers are targeting US think tanks Class action suit launched against Dell after data breach led to years of scam calls Ransomware masquerades as mobile version of Cyberpunk 2077.

Data breaches

Data breaches Ransomware Energy and Utilities Computer and Electronics

Court Rules Non-Party Subpoenaed ESI Not Subject to 100-Mile Boundary: eDiscovery Case Week

eDiscovery Daily

JULY 25, 2018

In this case where the plaintiff claimed breach of contract, bad faith, unjust enrichment, and fraud against the defendant insurance company over the valuation of the plaintiff’s vehicles after two automobile collisions, the plaintiff served non-party Mitchell International, Inc. with a subpoena duces tecum in March 2018.

Computer and Electronics

Computer and Electronics Insurance Compliance Education

No Bad Faith Means No Sanctions for Failing to Preserve Video of Altercation: eDiscovery Case Law

eDiscovery Daily

FEBRUARY 18, 2019

In assessing the plaintiff’s motion, Judge O’Hara noted that “the parties agreed the surveillance video is a form of electronically stored information (“ESI”) subject to the preservation requirements of Rule 37(e)”. The plaintiff subsequently filed the suit in July 2017. Judge’s Ruling.

e-Discovery

e-Discovery Computer and Electronics Insurance Education

What’s a Lawyer’s Duty When a Data Breach Occurs within the Law Firm: Cybersecurity Best Practices

eDiscovery Daily

APRIL 7, 2019

Right inside the door, you see a handwritten notice on a big whiteboard which says: All network services are down, DO NOT turn on your computers! requires the attorney to act reasonably and promptly to stop the breach and mitigate the damage, using “all reasonable efforts” to restore computer operations to be able to continue client services.

Data breaches

Data breaches Cybersecurity e-Discovery Computer and Electronics

German court: monitoring of employees by key logger is not allowed

Data Protection Report

AUGUST 8, 2017

Subsequently, the firm installed key logger software on its employees’ computers. When reviewing the files created by the software, the employer became aware that an employee had used his work computer for private purposes during working hours and, thereupon, terminated the employment relationship.

Computer and Electronics

Computer and Electronics Insurance Privacy GDPR

Fund Managers Targeted in Sophisticated Cyberattacks

Data Matters

DECEMBER 10, 2019

For remote access to emails, trading systems and other electronic data containing confidential information, the authentication mechanism should utilize at least two of the following factors: what a person knows (e.g., Insurance: The firm should communicate with its insurance company and review policy coverage. biometrics).

Data breaches

Data breaches Insurance Authentication Risk

Fund Managers Targeted in Sophisticated Cyberattacks

Data Matters

DECEMBER 10, 2019

For remote access to emails, trading systems and other electronic data containing confidential information, the authentication mechanism should utilize at least two of the following factors: what a person knows (e.g., Insurance: The firm should communicate with its insurance company and review policy coverage. biometrics).

Data breaches

Data breaches Insurance Authentication Risk

To get the most from blockchain in government, a sharing mindset is needed

CGI

MAY 13, 2018

When I was at university earning my Masters in Computer Science, I devoted a lot of my coursework to distributed computing. But the doctor decides the medical treatment while the insurance provider decides the amount and mode of payment. To get the most from blockchain in government, a sharing mindset is needed. It is shared.

Blockchain

Blockchain Government Computer and Electronics Mining

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Some medical practices adopted electronic health recording systems before there were clear guidelines on what these systems should contain.

Compliance

Compliance Computer and Electronics Security Encryption

First Ever Multi-State Data Breach Lawsuit Targets Healthcare Provider: Cybersecurity Trends

eDiscovery Daily

JANUARY 10, 2019

The lawsuit alleges that Fort Wayne-based Medical Informatics Engineering and its subsidiary NoMoreClipboard “failed to take adequate and reasonable measures to ensure their computer systems were protected,” resulting in a 2015 breach that gave hackers access to the personal healthcare information of 3.9 million US citizens.

Data breaches

Data breaches Cybersecurity Computer and Electronics Insurance

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Some medical practices adopted electronic health recording systems before there were clear guidelines on what these systems should contain.

Compliance

Compliance Computer and Electronics Security Encryption

Five Steps to HIPAA Security Compliance

HIPAA

OCTOBER 16, 2013

The health insurance portability and accountability act has set various guidelines, which should be adhered to by anyone who handles any electronic medical data. Some medical practices adopted electronic health recording systems before there were clear guidelines on what these systems should contain.

Compliance

Compliance Computer and Electronics Security Encryption

HHS Announces Settlements with Health Care System and Medical Research Institute over Potential HIPAA Violations

Hunton Privacy

MARCH 22, 2016

million settlement with the Minnesota Attorney General for violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) and its implementing regulations, and various Minnesota debt collection and consumer protection laws. In 2012, Accretive entered into a $2.5 In 2012, Accretive entered into a $2.5

Computer and Electronics

Computer and Electronics Risk Passwords Privacy

Standardizing the Non-Standard Digital Forensics Protocol, Sort Of: eDiscovery Best Practices

eDiscovery Daily

AUGUST 29, 2018

Leave it to Craig Ball to come up with a proposed form examination protocol for performing forensic examinations. And, leave it to Craig to teach you what you need to know to use and adapt such a protocol. In an unusually long blog post for Craig’s blog (dare I say a “Losey-ian” length blog post?),

e-Discovery

e-Discovery Computer and Electronics Insurance Education

Me on the Equifax Breach

Schneier on Security

NOVEMBER 8, 2017

I am a board member of the Electronic Frontier Foundation, AccessNow, and the Tor Project; and an advisory board member of Electronic Privacy Information Center and VerifiedVoting.org. This was not a minor vulnerability; the computer press at the time called it "critical." It eventually got around to it on July 29.

Personal data

Personal data Computer and Electronics Privacy Data breaches

Saudi Arabia’s New Data Protection Law – What you need to know

DLA Piper Privacy Matters

OCTOBER 7, 2021

The Middle East’s data protection regulatory landscape is complex, and continues to develop with Saudi Arabia’s ( KSA ) newly published Personal Data Protection Law ( PDPL ). While the PDPL contains the main features of a modern data protection law, it cannot be considered a direct analogue of the GDPR. It becomes fully effective on 23 March 2022.

Personal data

Personal data Compliance Computer and Electronics IoT

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

Krebs on Security

JULY 24, 2018

Now the financial institution is suing its insurance provider for refusing to fully cover the losses. That second computer had the ability to manage National Bank customer accounts and their use of ATMs and bank cards. million total. THE LAWSUIT. for both intrusions,” the bank said in its lawsuit.

Insurance

Insurance Computer and Electronics Phishing Access

#ModernDataMasters: Henrik Liliendahl, Chairman & CTO, Product Data Lake

Reltio

JUNE 20, 2019

I got good grades in mathematics at school but it was an evening class in secondary school that I took in what was then called EDP (Electronic Data Processing) that got me started. We didn’t even have a computer at that school so the whole class was about things drawn on the blackboard. Getting a more holistic view on data. Also DaaS.

MDM

MDM Manufacturing Computer and Electronics Digital transformation

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

Among other news: Lancashire-based Lad Media was wound up , and its director, Keith Hancock, was banned from forming or managing an organisation for four years, after the company was deemed to have violated the PECR (Privacy and Electronic Communications Regulations). Video-sharing app TikTok agreed to a record $5.7 million (£4.2

Data breaches

Data breaches GDPR Passwords Personal data

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

DLA Piper Privacy Matters

AUGUST 23, 2021

Definition of Personal information and Sensitive Personal information “Personal information” means any kind of information relating to an identified or identifiable natural person, either electronically or otherwise recorded, but excluding information that has been de-identified or anonymised.

Data Privacy

Data Privacy Privacy Compliance Analytics

Extending intranets to hard-to-reach staff: Controlled documents kiosk example

ChiefTech

OCTOBER 14, 2008

The IBF list the following examples of hard-to-reach staff: factory workers retail staff field engineers building inspectors consultants sales teams flight and rail workers catering staff building inspectors call centre representatives insurance assessors.

Computer and Electronics

Computer and Electronics Mining Retail Records Management

2017 eDiscovery Case Law Year in Review, Part 3

eDiscovery Daily

JANUARY 9, 2018

But first, it’s also worth noting that Tom O’Connor and I will be discussing some of these cases – and what the legal profession can learn from those rulings – on Thursday’s webcast Important eDiscovery Case Law Decisions of 2017 and Their Impact on 2018 at noon CT (1pm ET, 10am PT). POSSESSION, CUSTODY AND CONTROL. Smart Business Technology, Inc.,

e-Discovery

e-Discovery Computer and Electronics Communications Cloud

Maryland Court Finds Coverage for Lost Data and Slow Computers After Ransomware Attack

LCMHS hospital suffered a Ransomware attack at Louisiana hospital that impacted 270,000 patients

Webinars

Trending Sources

Court Rules Fraud Involving a Computer Is Not ‘Computer Fraud’ under Crime Protection Policy

Webinars

Security Affairs newsletter Round 463 by Pierluigi Paganini – INTERNATIONAL EDITION

Understanding HIPAA: A Guide to Avoiding Common Violations

Delaware County, Pennsylvania, opted to pay 500K ransom to DoppelPaymer gang

Information Management in the Not-So-Distant Future of Health Care

Largest hospital system in New Jersey was hit by ransomware attack

First Multistate HIPAA Data Breach Lawsuit May Signal Increased State Interest in Data Security Enforcement

List of data breaches and cyber attacks in June 2021 – 9.8 million records breached

Business ID Theft Soars Amid COVID Closures

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

Chronicle of a Records Manager: Controlling the Chaos of Disaster Response and Recovery

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

List of data breaches and cyber attacks in October 2018 – 44,701,278 records leaked

HHS Announces HIPAA Settlement with UMass

The U.S. Office of the Comptroller of the Currency Seeks Comment on Digital Innovation by Banks

OPC reconsiders its approach to cross-border data transfers with the Equifax decision

What IG Professionals Should Know About the Internet of Bodies

Will Lawyers Ever Embrace Technology?: eDiscovery Best Practices, Part Four

OCR Enters into Record Settlement with Anthem

Podcast Episode 119: EFF on Expanding Researchers Rights and AT&T talks IoT Security Fails

List of data breaches and cyber attacks in December 2020 – 148 million records breached

Court Rules Non-Party Subpoenaed ESI Not Subject to 100-Mile Boundary: eDiscovery Case Week

No Bad Faith Means No Sanctions for Failing to Preserve Video of Altercation: eDiscovery Case Law

What’s a Lawyer’s Duty When a Data Breach Occurs within the Law Firm: Cybersecurity Best Practices

German court: monitoring of employees by key logger is not allowed

Fund Managers Targeted in Sophisticated Cyberattacks

Fund Managers Targeted in Sophisticated Cyberattacks

To get the most from blockchain in government, a sharing mindset is needed

Five Steps to HIPAA Security Compliance

First Ever Multi-State Data Breach Lawsuit Targets Healthcare Provider: Cybersecurity Trends

Five Steps to HIPAA Security Compliance

Five Steps to HIPAA Security Compliance

HHS Announces Settlements with Health Care System and Medical Research Institute over Potential HIPAA Violations

Standardizing the Non-Standard Digital Forensics Protocol, Sort Of: eDiscovery Best Practices

Me on the Equifax Breach

Saudi Arabia’s New Data Protection Law – What you need to know

Hackers Breached Virginia Bank Twice in Eight Months, Stole $2.4M

#ModernDataMasters: Henrik Liliendahl, Chairman & CTO, Product Data Lake

2019 end-of-year review part 1: January to June

China’s PIPL has finally arrived, and brings helpful clarification (rather than substantial change) to China’s data privacy framework

Extending intranets to hard-to-reach staff: Controlled documents kiosk example

2017 eDiscovery Case Law Year in Review, Part 3

Stay Connected