Schneier on Security

FEBRUARY 28, 2024

In the first week of January, the pharmaceutical giant Merck quietly settled its years-long lawsuit over whether or not its property and casualty insurers would cover a $700 million claim filed after the devastating NotPetya cyberattack in 2017. The 9/11 attacks cost insurers and reinsurers $47 billion.

Insurance 90

Insurance Government Cybersecurity Risk 90

Security Affairs

MAY 15, 2023

A previously unknown ransomware group known as RA Group is targeting companies in U.S. Cisco Talos researchers recently discovered a new ransomware operation called RA Group that has been active since at least April 22, 2023. The group has already compromised three organizations in the U.S. and one in South Korea.

Ransomware 82

Ransomware Encryption Healthcare Insurance 82

IT Governance

MARCH 5, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight Millions of Pure Incubation Ventures records listed on hacking forum 183,754,481 records apparently belonging to the venture capital and private equity group Pure Incubation Ventures have been listed for sale on a hacking forum. The claim is yet to be verified.

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

IT Governance

MAY 2, 2023

Shields Health Care Group The largest data breach of April 2023 was at the Shields Health Care Group, a Massachusetts-based medical services provider. Additionally, billing information, insurance numbers and other financial details were stolen in the attack. Biggest data breaches of April 2023 1. million people.

Data breaches 105

Data breaches Ransomware Personal data Access 105

IT Governance

MARCH 11, 2024

Glosbe dictionary exposes almost 7 million records The multilingual online dictionary Glosbe left a MongoDB instance unsecured last year, exposing nearly 7 million users’ information, including personal data, encrypted passwords and social media identifiers. Glosbe did not reply, but the open instance was soon closed.

Data Privacy 87

Data Privacy Privacy Security Data breaches 87

IT Governance

DECEMBER 27, 2019

This meant they weren’t encrypted, making them freely accessible to as many as 20,000 employees, most of whom had no legitimate reason to access the information. US food giant Mondelez sued insurance company Zurich American for denying a $100 million (£77 million) claim filed after the NotPetya attack.

Data breaches 69

Data breaches GDPR Passwords Personal data 69

Privacy and Cybersecurity Law

NOVEMBER 9, 2018

On August 13, 2018, a coalition of consumer advocacy groups responded by arguing “the sky is not falling, as industry suggests” and claimed the business community’s proposed changes would “fundamentally water down” the CCPA’s privacy protections. Those amendments were the subject of a contentious battle between interested stakeholders.

Privacy 58

Privacy Sales Education Compliance 58