Data Matters

FEBRUARY 2, 2021

The National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law has been adopted in at least 11 states, with several others (including New York) having implemented either older or similar laws or administrative guidance. appeared first on Data Matters Privacy Blog.

Insurance 114

Insurance Security Compliance Cybersecurity 114

Security Affairs

JULY 9, 2021

Insurance giant CNA notifies customers of a data breach after the Phoenix CryptoLocker ransomware attack suffered in March. US insurance giant CNA is notifying customers of a data breach after the ransomware attack that it suffered in March. Therefore, we have no reason to suspect your information has or will be misused.”

Data breaches 141

Data breaches Insurance Ransomware Encryption 141

Daymark

AUGUST 15, 2023

A CISO Primer on Navigating Cyber Insurance After 10+ years of working with clients to negotiate and place cyber insurance, I’ve noticed that one of the most frequent challenges has always been getting the underwriters and my client’s information security stakeholder (like a CISO or CIO) to understand each other.

Insurance 52

Insurance Information Security Communications Security 52

Security Affairs

APRIL 8, 2024

Greylock McKinnon Associates, a service provider for the Department of Justice, suffered a data breach that exposed data of 341650 people. GMA disclosed a data breach that impacted medicare and other information belonging to 5465 people. The data breach occurred on May 30, 2023, and was discovered on February 7, 2024.

Data breaches 109

Data breaches Insurance Cybersecurity Government 109

IT Governance

OCTOBER 15, 2020

Cyber threats are so numerous that it’s impossible to prevent security incidents altogether. That’s why they organisations increasingly relying on cyber insurance policies to cover the costs when data breaches and cyber attacks occur. But just how helpful is cyber insurance? What is cyber insurance?

Insurance 122

Insurance Data breaches Risk Security 122

Krebs on Security

APRIL 27, 2023

A shocking number of organizations — including banks and healthcare providers — are leaking private and sensitive information from their public Salesforce Community websites, KrebsOnSecurity has learned. A researcher found DC Health had five Salesforce Community sites exposing data.

Access 278

Access Authentication Information Security Communications 278

Data Breach Today

JUNE 21, 2021

SEC: Executives Left in Dark About Vulnerability in File-Sharing System Title insurance company First American Financial Corp. will pay the SEC a $488,000 penalty as a result of a data breach revealed two years ago.

Insurance 345

Insurance Data breaches Information Security Security 345

Data Breach Today

FEBRUARY 6, 2018

Policies Offer Incentives for Good Information Security Practices Apple and Cisco say they've partnered with insurers Aon and Allianz to offer cyber insurance policies for organizations that meet best security practices and use products from the technology companies.

Insurance 140

Insurance Information Security Risk Security 140

Hunton Privacy

AUGUST 6, 2019

On August 2, 2019, New Hampshire Governor Chris Sununu signed into law SB 194 (the “Bill”), which requires insurers licensed in the state (“licensees”) to put in place data security programs and report cybersecurity events. Key provisions of the Bill include: Information Security Program. Incident Response Plan.

Insurance 81

Insurance Security Cybersecurity Information Security 81

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”.

Insurance 68

Insurance Security Cybersecurity Data breaches 68

Security Affairs

APRIL 20, 2021

Car insurance provider Geico has suffered a data breach, attackers have stolen the driver’s licenses for policyholders for several weeks. Geico, the second-largest auto insurer in the U.S., We have reason to believe that this information could be used to fraudulently apply for unemployment benefits in your name.”

Insurance 126

Insurance Data breaches Sales Security 126

Security Affairs

APRIL 10, 2024

Group Health Cooperative of South Central Wisconsin disclosed a data breach that impacted over 500,000 individuals. The Group Health Cooperative of South Central Wisconsin (GHC-SCW) is a non-profit organization that provides health insurance and medical care services to its members in the Madison metropolitan area of Wisconsin.

Data breaches 113

Data breaches e-Discovery Ransomware Insurance 113

Data Matters

JUNE 23, 2022

Kentucky and Maryland recently continued the trend of state insurance departments adopting some version of the National Association of Insurance Commissioners’ (“NAIC”) Insurance Data Security Model Law. The post Kentucky and Maryland Recently Joined Other States in Adopting NAIC Model Data Security Law.

Insurance 103

Insurance Security Cybersecurity Information Security 103

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. The Act defines licensees as persons authorized, registered, or licensed under Michigan insurance laws or required to be so. 6491 (Act). MCL § 500.550.

Insurance 68

Insurance Security Cybersecurity FOIA 68

Data Matters

JULY 30, 2018

In October 2017, the National Association of Insurance Commissioners (NAIC) adopted an Insurance Data Security Model Law. On May 3, 2018, South Carolina became the first state to enact this Model Law, in the form of the South Carolina Insurance Data Security Act (H.B.

Insurance 60

Insurance Security Cybersecurity Data breaches 60

Security Affairs

SEPTEMBER 29, 2020

Gallagher (AJG) insurance giant disclosed a ransomware attack, the security breach took place on Saturday. Gallagher (AJG) global insurance brokerage firm confirmed that it was his with a ransomware attack on Saturday, September 26. US-based Arthur J. US-based Arthur J. ” continues the form. Pierluigi Paganini.

Insurance 138

Insurance Ransomware Data breaches Cybersecurity 138

Security Affairs

APRIL 16, 2024

The Dark Angels (Dunghill) ransomware group claims the hack of the chipmaker Nexperia and the theft of 1 TB of data from the company. The Dark Angels (Dunghill) ransomware group claims responsibility for hacking chipmaker Nexperia and stealing 1 TB of the company’s data. All data is confidential, contains trade secrets. -

Ransomware 108

Ransomware Manufacturing Insurance Cybersecurity 108

Security Affairs

JANUARY 4, 2024

Healthcare technology company HealthEC disclosed a data breach that exposed the personal information of 4.5 Healthcare technology company HealthEC (HEC) disclosed a data breach that impacted 4.5 million Individuals. million customers of its business partners. ” reads a notice published by the company on its website. .

Data breaches 111

Data breaches Artificial Intelligence Insurance Access 111

Security Affairs

APRIL 4, 2024

US cancer center City of Hope suffered a data breach that impacted 800,000 individuals, personal and health information was compromised. City of Hope suffered a data breach, the organization started notifying 827149 individuals that their personal and health information was compromised. medical record number).”

Data breaches 97

Data breaches Insurance Government Security 97

IT Governance

JULY 15, 2019

Cyber insurance is big business these days. With the ever-present danger of data breaches and cyber attacks, organisations must be sure that they have the financial backing to respond appropriately. Most policies include provisions requiring organisations to follow certain information security best practices.

Insurance 89

Insurance Data breaches Risk Information Security 89

eSecurity Planet

AUGUST 9, 2022

Regulatory compliance and data privacy issues have long been an IT security nightmare. And since the EU’s General Data Protection Regulation (GDPR) took effect May 25, 2018, IT compliance issues have been at the forefront of corporate concerns. GDPR-style data privacy laws came to the U.S. Healthcare Data Privacy Laws.

Data Privacy 138

Data Privacy Compliance Privacy Security 138

Security Affairs

FEBRUARY 28, 2024

Pharmaceutical giant Cencora suffered a cyber attack and threat actors stole data from its infrastructure. Pharmaceutical giant Cencora disclosed a data breach after it was the victim of a cyberattack. The company discovered the security breach on February 21 and immediately launched an investigation into the incident.

Healthcare 91

Healthcare Data breaches Ransomware Insurance 91

Security Affairs

JANUARY 6, 2024

Law firm Orrick, Herrington & Sutcliffe disclosed a data breach that took place in early 2023, which impacted roughly 600,000 individuals. The law firm Orrick, Herrington & Sutcliffe, disclosed a data breach that impacted 638,000 individuals. ” reads the data breach notification.

Data breaches 104

Data breaches Insurance Access Cybersecurity 104

Security Affairs

AUGUST 7, 2019

The American group of insurance and financial services companies State Farm disclosed a credential stuffing attack it has suffered in July. The American group of insurance and financial services companies State Farm revealed that it was the victim of a credential stuffing attack it has suffered in July. Pierluigi Paganini.

Insurance 86

Insurance Data breaches Financial Services Passwords 86

Security Affairs

DECEMBER 11, 2023

Toyota Financial Services (TFS) disclosed a data breach, threat actors had access to sensitive personal and financial data. Toyota Financial Services (TFS) is warning customers it has suffered a data breach that exposed sensitive personal and financial data. Affected customers have now been informed.

Financial Services 111

Financial Services Data breaches Ransomware Insurance 111

Data Matters

FEBRUARY 10, 2021

2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. According to NYDFS, the incorporation of these practices should be proportionate to each insurer’s size, resources, geographic distribution, and other factors. The Framework.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

Security Affairs

NOVEMBER 10, 2023

McLaren Health Care (McLaren) experienced a data breach that compromised the sensitive personal information of approximately 2.2 McLaren Health Care (McLaren) disclosed a data breach that occurred between late July and August. The security breach exposed the sensitive personal information of 2,192,515 people.

Data breaches 107

Data breaches Ransomware Insurance Manufacturing 107

Security Affairs

DECEMBER 9, 2023

Kentucky health system Norton Healthcare disclosed a data breach after it was a victim of a ransomware attack in May. Norton Healthcare disclosed a data breach after a ransomware attack that hit the organization on May 9, 2023. The security breach exposed personal information belonging to patients, employees, and dependents.

Data breaches 116

Data breaches Ransomware Insurance Access 116

Hunton Privacy

NOVEMBER 15, 2023

Patrick Gunning from King & Wood Mallesons reports that, on November 2, 2023, the Australian Information Commissioner filed proceedings in the Federal Court of Australia against Australian Clinical Labs Limited seeking a civil penalty ( i.e. , a fine) in connection with the company’s response to a data breach that occurred in February 2022.

Data breaches 128

Data breaches Privacy Risk Information Security 128

Security Affairs

NOVEMBER 23, 2023

Healthcare services provider Welltok disclosed a data breach that impacted nearly 8.5 It provides a platform that leverages data-driven insights to engage individuals in their health and well-being. The company disclosed a data breach that exposed the personal data of nearly 8.5 million patients in the U.S. million “U.S.-based

Data breaches 92

Data breaches Insurance Ransomware Education 92

Security Affairs

NOVEMBER 12, 2023

The State of Maine disclosed a data breach that impacted about 1.3 The Government organization disclosed a data breach that impacted about 1.3 Threat actors exploited the zero-day vulnerability CVE-2023-34362 to hack the file transfer platform and steal the data of the organization. million individuals. million Genworth 2.5

Data breaches 108

Data breaches Insurance Education Cybersecurity 108

Security Affairs

JANUARY 19, 2024

American global apparel and footwear company VF Corp revealed that the December data breach impacted 35.5 VF immediately began taking measures to remediate the attack and launched an investigation into the security breach. ” reads a Form 8-K filed with the Securities and Exchange Commission (SEC) on January 18, 2024.

Data breaches 112

Data breaches Passwords Retail Insurance 112

Security Affairs

NOVEMBER 2, 2023

Okta warns approximately 5,000 employees that their personal information was compromised due to a third-party vendor data breach. “On October 12, 2023, Rightway informed Okta that an unauthorized actor gained access to an eligibility census file maintained by Rightway in its provision of services to Okta. .”

Data breaches 115

Data breaches Insurance Access Authentication 115

Krebs on Security

JUNE 18, 2021

NYSE:FAF ] was leaking more than 800 million documents — many containing sensitive financial data — related to real estate transactions dating back 16 years. Securities and Exchange Commission settled its investigation into the matter after the Fortune 500 company agreed to pay a paltry penalty of less than $500,000.

Insurance 265

Insurance Risk Financial Services Mining 265

Hunton Privacy

SEPTEMBER 21, 2023

362 (“Act”), a bill that would impose new requirements on data brokers and grant residents new rights designed to facilitate control over their personal data. The Act would grant California consumers the right to request that data brokers (1) delete and (2) limit the further sale and sharing of consumers’ personal data.

Insurance 69

Insurance Personal data Sales Compliance 69

Security Affairs

NOVEMBER 23, 2023

American retailer and distributor of automotive parts and accessories AutoZone discloses a data breach after a MOVEit attack. AutoZone disclosed a data breach resulting from the hack of their MOVEit Transfer installation. Based on that analysis, we have determined that certain of your information was included in those files.”

Data breaches 109

Data breaches Retail Education Ransomware 109

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. Who had access to the data?

Insurance 112

Insurance Passwords Libraries Access 112