Encryption, Financial Services, Insurance and Passwords

Encryption

Financial Services

Insurance

Passwords

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity

Cybersecurity Insurance Phishing Financial Services

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

Trending Sources

New York SHIELD Act $600,000 settlement

Data Protection Report

FEBRUARY 8, 2022

According to the settlement agreement, the AG concluded that EyeMed’s security practices did not meet the requirements of the SHIELD Act with respect to four requirements: authentication, password management, logging and monitoring, and data retention in the email account. In total, information for approximately 2.1 SHIELD Act.

Passwords

Passwords Financial Services Authentication Insurance

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

What is a Cyberattack? Types and Defenses

eSecurity Planet

JUNE 16, 2022

Cyber criminals may damage, destroy, steal, encrypt, expose, or leak data as well as cause harm to a system. Encrypted threats spiked 167%, ransomware increased 105%, and 5.4 In May, cybersecurity researchers revealed that ransomware attacks are increasing their aggressive approach by destroying data instead of encrypting it.

Ransomware

Ransomware Cybersecurity Phishing Encryption

Marriott Breach: More than 500 Million Guest Affected

Adam Levin

NOVEMBER 30, 2018

“The company recently discovered that an unauthorized party had copied and encrypted information, and took steps towards removing it,” Marriott disclosed in a statement. The vulnerability that the hackers took advantage of had been in place and used for “unauthorized access,” according to the company statement, since 2014.

Financial Services

Financial Services Encryption Passwords Communications

50 Ways to Avoid Getting Scammed on Black Friday

Adam Levin

NOVEMBER 17, 2020

Make sure your smartphone, tablet and laptop are password-protected, particularly if you’re in the habit of carrying them around wherever you go. VPNs encrypt data , making it much harder to intercept when transmitted through a shared or suspect internet connection. SSLs ensure all data is encrypted. Change passwords repeatedly.

Retail

Retail e-Delivery Passwords Phishing

Ransomware Protection in 2021

eSecurity Planet

FEBRUARY 16, 2021

All of your files are encrypted with RSA-2048 and AES-128 ciphers.” ” Or you might see a readme.txt stating, “Your files have been replaced by these encrypted containers and aren’t accessible; you will lose your files on [enter date] unless you pay $2500 in Bitcoin.” IMPORTANT INFORMATION !!!

Ransomware

Ransomware Encryption Insurance Cloud

Multi-Factor Authentication Best Practices & Solutions

eSecurity Planet

OCTOBER 5, 2021

Passwords are the most common authentication tool used by enterprises, yet they are notoriously insecure and easily hackable. But even when passwords are secure, it’s not enough. Recently, hackers leaked 87,000 Fortinet VPN passwords , mostly from companies who hadn’t yet patched a two-year-old vulnerability. MFA can be hacked.

Authentication

Authentication Passwords Access Computer and Electronics

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

JANUARY 19, 2022

Passwords are everywhere, but they probably weren't intended to be used as much as they are today. Maybe you are at an organization that requires you to change your passwords every 90 days or so, and so you have password fatigue -- there are only so many variations you can do every 90 days or so. I must have the password.

Passwords

Passwords Authentication Access Data breaches

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

IT Governance

MARCH 11, 2024

According to a listing on a popular hacking forum, the database includes customers’ names, email addresses, hashed passwords, and more. Source (New) Finance USA Yes 3,494 Woodruff Sawyer Source (New) Insurance USA Yes 3,087 Blackburn College Source (New) Education USA Yes 3,039 CAIRE Inc. The claim is yet to be verified.

Data Privacy

Data Privacy Privacy Security Data breaches

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

IT Governance

JANUARY 16, 2024

GB database includes names, email addresses, phone numbers and passwords. GB Rebekah Children’s Services Source (New) Non-profit USA Yes 2,805 Butte School District Source 1 ; source 2 (Update) Education USA Yes 2,658 Dignity Health Nevada St. Data breached: >7,000,000 records. Vauxhall Motors database with 5.5

Data Privacy

Data Privacy Privacy Manufacturing Retail

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Encrypting critical data assets. Board-management discussions about cyber risk should include identification of which risks to avoid, which to accept, and which to mitigate or transfer through insurance, as well as specific plans associated with each approach. Encrypting Critical Data Assets. Using appropriate access controls.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Best Digital Forensics Tools & Software for 2021

eSecurity Planet

AUGUST 13, 2021

With their Digital Intelligence Investigative Platform, Cellebrite boasts services that unify the investigative lifecycle and preserve digital evidence. Be it advanced locks, encryption barriers, or deleted and unknown content, the UFED (Universal Forensic Extraction Device) can extract physical and logical data. Magnet Forensics.

e-Discovery

e-Discovery Computer and Electronics Marketing Compliance

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

GitGuardian is a developer favorite offering a secrets detection solution that scans source code to detect certificates, passwords, API keys, encryption keys, and more. Evervault is on a mission to make encrypting sensitive data seamless with its security toolkit for developers. Ubiq Security. Cowbell Cyber.

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Information Management Today

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

NYDFS Imposes Fine of $5 Million on Carnival for Cybersecurity Breaches

Webinars

Trending Sources

New York SHIELD Act $600,000 settlement

Webinars

What is a Cyberattack? Types and Defenses

Marriott Breach: More than 500 Million Guest Affected

50 Ways to Avoid Getting Scammed on Black Friday

Ransomware Protection in 2021

Multi-Factor Authentication Best Practices & Solutions

The Hacker Mind Podcast: Going Passwordless

The Week in Cyber Security and Data Privacy: 4 – 10 March 2024

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Best Digital Forensics Tools & Software for 2021

Top Cybersecurity Startups to Watch in 2022

Stay Connected