Remove 10
Remove 2018 Remove Encryption Remove Financial Services Remove Security Remove Training
article thumbnail

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

article thumbnail

$8 million penalty to NYDFS – and another case of over-retention

Data Protection Report

NYDFS conducted its first audit of GGT for the period of May 17, 2018 through March 31 2019. A database that deletes data systematically after 10 years is good, but undermined if employees routinely download the information to fileshares and OneDrive and retain the information indefinitely.

Insiders

Sign Up for our Newsletter

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

article thumbnail

Ransomware Protection in 2021

eSecurity Planet

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. All of your files are encrypted with RSA-2048 and AES-128 ciphers.” Attackers will inform the victim that their data is encrypted. IMPORTANT INFORMATION !!! Screenshot example.

article thumbnail

New York Regulators Call on Insurers to Strengthen the Cyber Underwriting Process

Hunton Privacy

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. 2018-L-11008, 2018 WL 4941760 (Ill. For example, Mondelez International Inc.

article thumbnail

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

Is there something more secure? Simon Moffatt from CyberHut joins The Hacker Mind to discuss how identity and access management (IAM) is fundamental to everything we do online today, and why even multi-factor access, while an improvement, needs to yield to more effortless and more secure passwordless technology that’s coming soon.

article thumbnail

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

* This article first appeared in In-House Defense Quarterly on April 3, 2018. Information security is not yet a science; outside of the handful of issues falling under the field of cryptography, there is no formalized system of classification. Encrypting critical data assets. Creating an enterprise-wide governance structure.