Hunton Privacy

MARCH 2, 2023

On March 2, 2023, the Biden-Harris Administration announced the release of the National Cybersecurity Strategy. economy.

Cybersecurity 110

Cybersecurity IoT Military Insurance 110

Data Matters

JANUARY 28, 2022

The advisory was promptly endorsed by the National Cyber Security Centre, a division of Government Communications Headquarters (“GCHQ”), a UK intelligence agency. Like an incident response plan, MFA has become a critical element of cybersecurity programs. The post U.S.

Cybersecurity 157

Cybersecurity Financial Services Authentication Government 157

The Last Watchdog

AUGUST 1, 2023

1, 2023 – Guardz , the cybersecurity company securing and insuring SMEs, today disclosed the existence of a Hidden Virtual Network Computing (hVNC) malware targeting macOS devices. This combination of stealth, persistence, data theft, and remote control makes the malware a very potent tool in the hands of malicious actors.

Insurance 189

Insurance Cybersecurity Risk Education 189

Data Protection Report

JANUARY 4, 2024

a. Automated Decision-Making Technology b. Cybersecurity Audits c. Three more states are scheduled to have comprehensive privacy laws take effect in 2024: Montana, Oregon, and Texas. a. Which one does NOT require a minimum number of residents’ personal data for the “controller” to be in-scope for the law?

Privacy 111

Privacy Cybersecurity Artificial Intelligence e-Discovery 111

Thales Cloud Protection & Licensing

NOVEMBER 15, 2023

Ready for Take-off: Rising Above Airport Cybersecurity Challenges sparsh Thu, 11/16/2023 - 04:52 Aviation is a fast-paced world, with airports around the globe serving billions of passengers annually. These bustling hubs require robust security systems to ensure the safety of passengers, staff, and infrastructure.

Cybersecurity 87

Cybersecurity Authentication Access Compliance 87

Krebs on Security

JULY 23, 2020

In May 2019, KrebsOnSecurity broke the news that the website of mortgage title insurance giant First American Financial Corp. based First American [ NYSE:FAF ] is a leading provider of title insurance and settlement services to the real estate and mortgage industries. It employs some 18,000 people and brought in $6.2 billion in 2019.

Insurance 307

Insurance Financial Services Mining Access 307

Data Matters

DECEMBER 7, 2017

Department of Treasury released a 176-page Report examining the current regulatory framework for asset management and insurance industries. The Model Law attempts to set a baseline for cybersecurity, although it depends on legislative action on the state level. 3, 2017), and makes recommendations to ensure alignment. Report at 117.

Insurance 60

Insurance Data breaches Security Cybersecurity 60

IT Governance

NOVEMBER 6, 2023

At the end of each month, these incidents – and any others that we find – will be used to inform our monthly analysis of data breaches and cyber attacks. It secured its systems, notified law enforcement and began investigating the incident. Boeing is “assessing the claim”.

Data Privacy 97

Data Privacy Privacy Libraries Security 97

Adam Levin

MARCH 26, 2020

Cyber insurance is still evolving, and as such you can still get good deals even if your cybersecurity is not completely up to snuff. Each has reported—or worse have been discovered to have—extremely sensitive customer data stored on cloud servers that were not properly secured. billion people. Who is accountable?

Insurance 84

Insurance Passwords Cloud Risk 84

IT Governance

OCTOBER 24, 2023

Records breached: Unknown, but sensitive personal data was probably breached. BHI Energy Announces Data Breach Affecting Confidential Information of 91k Individuals Date of breach: 29 June 2023 (filed notice with the Attorney General of Maine on 18 October 2023). It’s unclear whether personal data has been breached.

Data Privacy 107

Data Privacy Privacy Security Data breaches 107

The Last Watchdog

OCTOBER 29, 2018

The United States has experienced the most cybersecurity breaches in the world and the Equifax Breach was one of the first to be considered a “mega breach.”. In fact, recent research reveals that about 60% of information security stakeholders have an IT background, but about the same amount lack formal technical training[1].

Security 164

Security Data Privacy Privacy Data breaches 164

Security Affairs

APRIL 16, 2024

All data is confidential, contains trade secrets. - 30 Gb user data - production line settings - repository with equipment configures - 26 Gb machine operation logs - 1.2 Gb - NDA The group published a set of files as proof of the security breach and threatens leak all the stolen data if the victim will not pay the ransom. . -

Ransomware 102

Ransomware Manufacturing Insurance Cybersecurity 102

IT Governance

DECEMBER 11, 2023

Researchers from the German cyber security company Aplite discovered 3,806 servers from 111 countries accessible on the Internet. Compromised information includes patients’ personal data, health and medical records, financial data, internal emails and software source code. Data breached: 5 TB. and Robert W.

Data Privacy 101

Data Privacy Energy and Utilities Privacy Manufacturing 101

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. More states are sure to follow.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

Security Affairs

APRIL 30, 2023

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Security 84

Security Ransomware Cybersecurity Authentication 84

Hunton Privacy

OCTOBER 25, 2022

million fine to Interserve Group Limited for failing to keep employee personal data secure, which violates Article 5(1)(f) and Article 32 of the EU General Data Protection Regulation (“GDPR”), during the period of March 2019 to December 2020.

Security 97

Security Personal data GDPR Insurance 97

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. Healthcare Data Privacy Laws.

Data Privacy 145

Data Privacy Compliance Privacy Security 145

IT Governance

MARCH 11, 2024

Glosbe dictionary exposes almost 7 million records The multilingual online dictionary Glosbe left a MongoDB instance unsecured last year, exposing nearly 7 million users’ information, including personal data, encrypted passwords and social media identifiers. Glosbe did not reply, but the open instance was soon closed.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

Security Affairs

JANUARY 19, 2024

VF immediately began taking measures to remediate the attack and launched an investigation into the security breach. “Based on VF’s preliminary analysis from its ongoing investigation, VF currently estimates that the threat actor stole personal data of approximately 35.5 million individual consumers.”

Data breaches 106

Data breaches Passwords Retail Insurance 106

Hunton Privacy

FEBRUARY 29, 2024

The resolution agreement requires Green Ridge to pay $40,000 to OCR and enter into a Corrective Action Plan that obligates Green Ridge to, among other items: Implement a security management process, including a thorough risk analysis, which is to be provided to HHS for review within 60 days.

Ransomware 111

Ransomware Personal data Risk Privacy 111

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. This resolution highlights the SEC’s continued focus on cybersecurity.

Cybersecurity 68

Cybersecurity Financial Services Risk Compliance 68

IT Governance

NOVEMBER 13, 2023

On 14 September, Mulkay discovered that the compromised files contained personal information, including “name, address, date of birth, Social Security number, driver’s license number or state ID, medical treatment information, and health insurance information”. Some patients also had their Social Security numbers exposed.”

Data Privacy 85

Data Privacy Privacy Security Data breaches 85

Hunton Privacy

MARCH 24, 2022

Similar to the CPA and VCDPA, the UCPA contains exemptions for covered entities, business associates and protected health information subject to the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”), and financial institutions or personal data subject to the Gramm-Leach-Bliley Act (“GLB”).

Privacy 113

Privacy Personal data Sales B2B 113

Security Affairs

NOVEMBER 6, 2018

Group-IB and Swiss insurance broker ASPIS that owns CryptoIns project, have developed the world’s first scoring model for assessing cryptocurrency exchanges. According to CryptoIns analysts, the crypto assets insurance market is expected to reach $7 billion by 2023. Why do crypto exchanges’ users need insurance?

Insurance 59

Insurance Risk Marketing Cybersecurity 59

IT Governance

MARCH 5, 2024

Known data breached Pure Incubation Ventures Source (New) Professional services USA Yes 183,754,481 EasyPark Source 1 ; source 2 ; source 3 (Update) Software Sweden Yes 21,100,000 Cutout.Pro Source (New) Software Hong Kong Yes 19,972,829 Optum Source 1 ; source 2 (New) Healthcare USA Yes 6 TB Kumagai Gumi Group Co.,

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IBM Big Data Hub

MAY 28, 2024

Its principles are the same as those of data protection—to protect data and support data availability. Data availability —ensuring critical data is available for business operations even during a data breach, malware or ransomware attack. Encryption is critical to data security.

Data breaches 73

Data breaches GDPR Compliance Encryption 73

Krebs on Security

AUGUST 6, 2020

A group of thieves thought to be responsible for collecting millions in fraudulent small business loans and unemployment insurance benefits from COVID-19 economic relief efforts gathered personal data on people and businesses they were impersonating by leveraging several compromised accounts at a little-known U.S.

Insurance 351

Insurance Communications Authentication Access 351

IT Governance

JUNE 1, 2023

On this page, you will find all our usual information breaking down the month’s security incidents. So, each month, we’ll update this page with the latest figures and links, so be sure to bookmark it to keep an eye out for the latest data breach news. However, we’ve decided to consolidate our records onto a single page.

Data breaches 122

Data breaches Insurance Personal data Ransomware 122

IT Governance

DECEMBER 19, 2023

An investigation determined that personal data, including names, addresses, phone numbers, Social Security numbers, dates of birth and bank account numbers, belonging to nearly 15 million people was obtained by an unauthorised party between 30 October and 1 November. The data belonged to nearly 7 million individuals.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. Data breached: >33,000,000 people’s data. Data breached: 19,718,687 records.

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

IT Governance

NOVEMBER 20, 2023

Records breached: 204.1GB of data in 183,793 files Beaverton School District warns parents of student data breach Date of breach: October 2023 Breached organisation: Beaverton School District, Oregon Incident details: One of Oregon’s largest school districts has warned parents that a data breach has affected students’ information.

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. What was leaked? Drug prescription listings).

Insurance 111

Insurance Passwords Libraries Access 111

Security Affairs

NOVEMBER 23, 2023

The platform aims to personalize and optimize health programs for individuals, employers, health plans, and other organizations. The company disclosed a data breach that exposed the personal data of nearly 8.5 million Teachers Insurance and Annuity Association of America 2.6 million Genworth 2.5 million PH Tech 1.7

Data breaches 88

Data breaches Insurance Ransomware Education 88

IT Governance

NOVEMBER 1, 2022

Welcome to our October 2022 review of data breaches and cyber attacks. We identified 102 security incidents throughout the month, which is the second largest figure so far this year – trailing only August (112). As always, you can find the full list of data breaches and cyber attacks below, divided into their respective categories.

Data breaches 111

Data breaches Ransomware Insurance Phishing 111

Privacy and Cybersecurity Law

SEPTEMBER 15, 2021

To be considered a high-quality dataset, the personal data included therein must be processed in accordance with the GDPR. Artificial intelligence not only crosses over into data protection law, but also extends to other areas of law, such as intellectual property, competition, consumer protection, and insurance, to name but a few.

Artificial Intelligence 52

Artificial Intelligence Personal data GDPR Compliance 52

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. Nevertheless, EyeMed certified its compliance with the Cybersecurity Regulation annually, from 2018-2021. Background.

Cybersecurity 52

Cybersecurity Personal data Risk Financial Services 52

Security Affairs

OCTOBER 9, 2021

The company notified via mail hundreds of individuals that were impacted by the security breach and that that have had their personal data exposed in the attack. . CMG immediately launched an investigation with the support of law enforcement, it also hired leading cybersecurity experts to determine the extent of the attack.

Ransomware 92

Ransomware Insurance Encryption Authentication 92