Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. sought coverage for expenses under its property insurance policy.

Insurance 70

Insurance Cybersecurity Risk Education 70

Hunton Privacy

JULY 24, 2020

On Wednesday, July 22, the New York Department of Financial Services (the “NYDFS”) announced that it had filed administrative charges against First American Title Insurance Co. under the NYDFS Cybersecurity Regulation , marking the agency’s first enforcement action since the rules went into effect in March 2017.

Cybersecurity 85

Cybersecurity Risk Financial Services Insurance 85

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity 88

Cybersecurity Privacy Insurance Risk 88

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. This resolution highlights the SEC’s continued focus on cybersecurity.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

Data Matters

APRIL 20, 2021

There just may be a new cybersecurity regulator in town. Department of Labor (DOL) published its first cybersecurity guidance last week ( Cybersecurity Guidance ). The Cybersecurity Guidance is set forth in three parts: Tips for Hiring a Service Provider , directed toward plan sponsors and fiduciaries.

Cybersecurity 68

Cybersecurity Insurance Risk Compliance 68

KnowBe4

MARCH 28, 2023

A leader tasked with cybersecurity can get ahead of the game by understanding where we are in the story of machine learning (ML) as a hacking tool," Tyson writes. "At At present, the most important area of relevance around AI for cybersecurity is content generation. Security awareness training still has a place to play here."

Phishing 83

Phishing Security awareness Insurance Cybersecurity 83

eSecurity Planet

JUNE 16, 2022

However, basic cybersecurity tools and practices, like patching , strong passwords , and multi-factor authentication (MFA), “can prevent 80 to 90% of cyberattacks,” said Anne Neuberger, deputy national security advisor for cyber and emerging technologies, during a White House press conference in Sept. The average cost of a breach is $3.6

Ransomware 145

Ransomware Cybersecurity Phishing Encryption 145

Hunton Privacy

APRIL 27, 2017

Earlier this month, the New York State Department of Financial Services (“NYDFS”) recently published FAQs and key dates for its cybersecurity regulation (the “NYDFS Regulation”) for financial institutions that became effective on March 1, 2017. March 1, 2018 – the one year transitional period ends.

Cybersecurity 53

Cybersecurity Compliance Financial Services Insurance 53

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk 147

Risk Financial Services Insurance Cybersecurity 147

eSecurity Planet

AUGUST 9, 2022

are subject to laws such as the Health Insurance Portability and Accountability Act (HIPAA) and the Health Information Technology for Economic and Clinical Health Act (the HITECH Act), as well as regulations such as the Clinical Laboratory Improvements Amendments (CLIA). See the Best Cybersecurity Awareness Training for Employees.

Data Privacy 145

Data Privacy Compliance Privacy Security 145

IBM Big Data Hub

FEBRUARY 14, 2024

But right now, pure AI can be programmed for many tasks that require thought and intelligence , as long as that intelligence can be gathered digitally and used to train an AI system. Generative AI can produce high-quality text, images and other content based on the data used for training. We’re all amazed by what AI can do.

Artificial Intelligence 89

Artificial Intelligence Retail Unstructured data Insurance 89

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Periodic risk-based assessments of third parties. Upcoming certifications.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

Hunton Privacy

DECEMBER 11, 2014

On December 10, 2014, the New York State Department of Financial Services (the “Department”) announced that it issued an industry guidance letter to all Department-regulated banking institutions that formally introduces the Department’s new cybersecurity preparedness assessment process.

Cybersecurity 40

Cybersecurity Financial Services Insurance Information Security 40

Security Affairs

AUGUST 16, 2023

A phishing campaign employing QR codes targeted a leading energy company in the US, cybersecurity firm Cofense reported. Other top 4 targeted industries include Manufacturing, Insurance, Technology, and Financial Services seeing 15%, 9%, 7%, and 6% of the campaign traffic respectively.” ” continues the report.

Phishing 86

Phishing Energy and Utilities Insurance Manufacturing 86

Data Matters

AUGUST 5, 2019

Furthermore, although entities that already comply with the breach notification requirements under certain state or federal laws (such as the Health Insurance Portability and Accountability Act (HIPAA), the New York Department of Financial Services cybersecurity regulations (23 N.Y.C.R.R.

Cybersecurity 68

Cybersecurity Data breaches Privacy Risk 68

DLA Piper Privacy Matters

APRIL 2, 2020

Working remotely, or “teleworking,” presents unique cybersecurity challenges to the employer, the employee and the supply chain, especially when being done for the first time in a rapidly changing environment. It is important to note, though, that cybersecurity regulation is generally sector-specific. Awareness and Training.

Cybersecurity 52

Cybersecurity Phishing Authentication Access 52

CGI

MAY 26, 2016

Managing the regulatory risks of cybersecurity: An evolving regulatory landscape. Financial institutions in the U.S. are well aware of the business risks related to cybersecurity but there are an increasing number of related regulatory risks that also need to be addressed. Fri, 05/27/2016 - 00:37. regulators’ state of mind. .

Cybersecurity 40

Cybersecurity Risk Financial Services Compliance 40

KnowBe4

FEBRUARY 14, 2023

This means you have a bunch of users that unwittingly follow a set of unusual and unnecessary clicks that they should know better than to follow – something they learn very quickly if they are enrolled in new-school security awareness training. Blog post with links: [link] Are Your Users Making Risky Security Mistakes? You're not alone.

Phishing 81

Phishing Security awareness Compliance Risk 81

Data Matters

MARCH 12, 2019

Of particular note, the Safeguards Rule NPRM proposes to align the FTC’s requirements with those of the New York Department of Financial Services (“NYDFS”), as found in its cybersecurity regulations, and the National Association of Insurance Commissioners (“NAIC”), as found in its insurance data security model law.

Privacy 68

Privacy IT Information Security Insurance 68

Rocket Software

FEBRUARY 25, 2022

A deep technical understanding isn’t required with the right solution, meaning business users can benefit from these tools without extensive training or continuous support from IT teams. After a short 1–2-week training period, most customers are comfortable writing and testing the robots themselves.

Compliance 59

Compliance Financial Services Risk Insurance 59

Data Protection Report

APRIL 2, 2020

On March 10, 2020, the New York Department of Financial Services (NYDFS) issued guidance to all of its regulated institutions engaged in virtual currency business activity, requiring them to have plans for preparedness to manage the possible operational and financial risks posed by the COVID-19 pandemic.

Risk 59

Risk Communications Authentication Financial Services 59

Rocket Software

NOVEMBER 16, 2021

These types of tasks create frustration, burnout and lead to high turnover rates, which costs an organization more time (and money) to find and train new employees. No one enjoys spending their days on monotonous, repetitive work that they know automation could be doing for them.

Customer Experience 52

Customer Experience Financial Services Insurance Compliance 52

HL Chronicle of Data Protection

MARCH 14, 2019

The proposed Rule will also require multi-factor authentication for any individual accessing customer information, but, unlike the NYDFS which imposed a similar requirement in the Cybersecurity Regulation, the FTC declined to endorse text messages as a permitted second factor. Employee training.

Privacy 40

Privacy Risk Cybersecurity Information Security 40

eSecurity Planet

FEBRUARY 16, 2021

With vulnerabilities rooted in unsuspecting users, the task of preventing these attacks means both staff training and a robust email and network security system that includes a strong backup program so you have a recent copy of your data that you can roll back to. Healthcare and financial services are the most attacked industries.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

DLA Piper Privacy Matters

JULY 30, 2019

From the bad guy’s perspective, why hack one organization directly when you can hit a service provider with potentially weaker defenses and the sensitive data of many organizations? Do “reasonable” cybersecurity controls extend to third parties? What’s the fallout from a service provider breach?

Data breaches 45

Data breaches Cybersecurity Financial Services Risk 45

DLA Piper Privacy Matters

AUGUST 23, 2021

Security and Confidentiality Personal information must be kept confidential, and security measures must be deployed, as prescribed by the Cybersecurity Law and the Data Security Law and their underlying measures, guidelines and technical standards. Training : organisations must provide data privacy training.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

eSecurity Planet

JANUARY 21, 2021

LogicManager’s GRC solution has specific use cases across financial services, education, government, healthcare, retail, and technology industries, among others. Financial reporting compliance. IT risk & cybersecurity management. Insurance & claims management. See our in-depth look at RSA Archer.

Compliance 67

Compliance Risk Government Retail 67

eSecurity Planet

JANUARY 21, 2021

LogicManager’s GRC solution has specific use cases across financial services, education, government, healthcare, retail, and technology industries, among others. Financial reporting compliance. IT risk & cybersecurity management. Insurance & claims management. See our in-depth look at RSA Archer.

Compliance 57

Compliance Risk Government Retail 57

eSecurity Planet

SEPTEMBER 16, 2022

In its 2021 Threat Force Intelligence Index , IBM reported that manufacturing and financial services were the two industries most at risk for attack, making up 23.2% Take a look at What Is Cybersecurity Risk Management? In time-sensitive environments such as cybersecurity and fraud prevention, time is an essential resource.

Analytics 113

Analytics Risk Authentication Financial Services 113

The Last Watchdog

MAY 24, 2021

Related: DHS launches 60-day cybersecurity sprints. billion hitting financial services organizations — an increase of more than 45 percent year-over-year in that sector. billion web app attacks last year, with more than 736 million targeting financial services. A: You’re right. It is astronomical.

Financial Services 178

Financial Services Passwords Data breaches Authentication 178

Data Matters

APRIL 23, 2018

Recent guidance from the Securities and Exchange Commission (SEC) on disclosure and enforcement actions by the Federal Trade Commission (FTC) make clear that cybersecurity is no longer a niche topic, but a concern significant enough to warrant the oversight of corporate boards of directors. Adopting the NIST Cybersecurity Framework.

Cybersecurity 60

Cybersecurity Risk Passwords Authentication 60

IT Governance

JANUARY 16, 2024

GB Rebekah Children’s Services Source (New) Non-profit USA Yes 2,805 Butte School District Source 1 ; source 2 (Update) Education USA Yes 2,658 Dignity Health Nevada St. Source (New) Real estate USA Yes 10 GB Unitex Source (New) Manufacturing USA Yes 9.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

KnowBe4

JUNE 20, 2023

This incident highlights how the North Korean regime trains cybercriminals to deceive people by impersonating tech workers or employers as part of their illegal activities. Train them not to fall for bogus job offers. A specific example of their actions involved using a fake job offer to trick a startup into losing over $600 million.

Data breaches 73

Data breaches Phishing Security awareness Ransomware 73

eSecurity Planet

AUGUST 13, 2021

Making our top products list for SIEM, threat intelligence , and UEBA this year, LogRhythm is a cybersecurity intelligence company with a range of solutions for organizations. The Paraben Corporation entered the cybersecurity marketplace in 1999, focused on digital forensics, risk assessment, and security solutions. DFS Market Trends.

e-Discovery 139

e-Discovery Computer and Electronics Marketing Compliance 139

KnowBe4

MAY 31, 2023

That's right – the financial services industry, at least according to cybersecurity vendor Armorblox's 2023 Email Security Threat Report. Blog post with links: [link] [Live Demo] Ridiculously Easy Security Awareness Training and Phishing Old-school awareness training does not hack it anymore. Yup – shoe store.

Phishing 76

Phishing File names Security awareness Risk 76

Collibra

JANUARY 18, 2022

The financial services industry has had a longstanding tradition of being at the forefront of adopting new technologies. The list of use cases where AI is applicable is expansive – including algorithmic trading, risk calculation, fraud, anti-money laundering (AML), cybersecurity, and more.

Financial Services 52

Financial Services Cloud Artificial Intelligence Government 52