Krebs on Security

DECEMBER 10, 2020

Since then reams of data stolen from the company have been posted online, with the attackers promising to publish more in the coming days. But the company says the malware did not jeopardize card data, and that the incident was limited to administrative areas of its business. Total System Services Inc. NYSE:GPN ].

Ransomware 335

Ransomware Financial Services Access IT 335

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services 68

Financial Services Cybersecurity Insurance Risk 68

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. NYDFS also found that Carnival had failed to implement basic protocols to prevent data breaches.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. Data breach litigation risks. We expect each of these trends to continue in 2018.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Thales Cloud Protection & Licensing

JANUARY 26, 2021

As the infrastructure changes, the adversaries change along with it to take the easiest path to data. Figure 1: Web application breaches in the Retail industry. As reported in the UK Finance “Fraud: The Facts” 2020 report, the theft of personal and financial data through data breaches was a major contributor to fraud losses in 2019.

Security 144

Security Retail Authentication Big data 144

IT Governance

JULY 31, 2019

State-sponsored hackers breach Greece’s top-level domain registrar (unknown). Department of Health Services email hacked exposing patient data (14,591). US telecoms company Sprint says it was breached via vulnerability in Samsung website (unknown). University of Alabama discovers 10-year-old account breach (1,400).

Data breaches 111

Data breaches Ransomware Personal data Government 111

Data Protection Report

OCTOBER 1, 2019

Although California has recently captured the lion’s share of attention with respect to privacy and security, on October 23, 2019, New York’s amended security breach law goes into effect, and on March 1, 2020, new security safeguards go live (N.Y. by a person without valid authorization or by an unauthorized person.

Security 40

Security Financial Services Passwords Risk 40