Hunton Privacy

JULY 1, 2022

On June 24, 2022, the New York State Department of Financial Services (“NYDFS” or the “Department”) announced it had entered into a $5 million settlement with Carnival Corp. Since Carnival was licensed by the Department to sell insurance in NY State, it was treated as a covered entity under the Cybersecurity Regulation.

Cybersecurity 115

Cybersecurity Insurance Phishing Financial Services 115

IBM Big Data Hub

MARCH 20, 2024

Organizations in the financial services, healthcare and other regulated sectors must place an even greater focus on managing risk—not only to meet compliance requirements, but also to maintain customer confidence and trust. This means actively minimizing downtime and closing gaps in the supply chain to remain competitive.

Cloud 78

Cloud Financial Services Risk Business Services 78

IT Governance

DECEMBER 11, 2023

Researchers from the German cyber security company Aplite discovered 3,806 servers from 111 countries accessible on the Internet. Source (New) Transport USA Yes 129,611 Tcman Source (New) Manufacturing Spain Yes 108 GB (179 files) Compass Group Italia Source (New) Hospitality Italy Yes 107 GB Pan-American Life Insurance Group, Inc.

Data Privacy 101

Data Privacy Energy and Utilities Privacy Manufacturing 101

Hunton Privacy

FEBRUARY 25, 2021

As reported on the Hunton Insurance Recovery blog , on February 4, 2021, the New York Department of Financial Services (“NYDFS”), which regulates the business of insurance in New York, has issued guidelines, in the Insurance Circular Letter No. sought coverage for expenses under its property insurance policy.

Insurance 70

Insurance Cybersecurity Risk Education 70

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

IT Governance

JANUARY 23, 2024

Publicly disclosed data breaches and cyber attacks: in the spotlight More than 70 million email addresses added to Have I Been Pwned The security researcher Troy Hunt has added more than 70 million email addresses from the Naz.API data set to his Have I Been Pwned data breach notification service. VF Corporation confirms 35.5

Data Privacy 52

Data Privacy Privacy Manufacturing Retail 52

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. The regulation requires that a licensee report a cybersecurity event to NYDFS within 72 hours of its determination of the event.

Cybersecurity 94

Cybersecurity Financial Services Phishing Compliance 94

IBM Big Data Hub

MARCH 27, 2024

Climate change causes extreme weather events across the world that endanger people’s lives and disrupt the businesses on which they depend. The United States saw 25 climate disaster events in 2023 with losses of more than USD 1 billion each. These events included floods, severe storms and a drought.

Risk 65

Risk Artificial Intelligence Agriculture Financial Services 65

HL Chronicle of Data Protection

FEBRUARY 25, 2020

Companies should take note of two imminent developments in New York in the area of cybersecurity regulation: enforcement of the New York Department of Financial Services (NYDFS) Cybersecurity Regulation (Regulation) and the effective date of the Stop Hacks and Improve Electronic Data Security Act (SHIELD Act or Act).

Cybersecurity 104

Cybersecurity Financial Services Data breaches Insurance 104

eSecurity Planet

JUNE 27, 2023

Security information and event management (SIEM) systems only have detections for 24 percent of the 196 techniques in MITRE ATT&CK v13, according to a new report. “This implies that adversaries can execute around 150 different techniques that will be undetected by the SIEM,” says the CardinalOps report.

Metadata 105

Metadata Financial Services Insurance Manufacturing 105

Data Matters

DECEMBER 23, 2020

Federal Deposit Insurance Corporation (FDIC) approved and the federal banking agencies jointly announced on December 18 a notice of proposed rulemaking, Computer-Security Incident Notification Requirements for Banking Organizations and Their Bank Service Providers (NPR). On December 15, 2020, the U.S.

Security 68

Security Cybersecurity Insurance Communications 68

erwin

APRIL 11, 2019

Some industries, such as healthcare and financial services, have been subject to stringent data regulations for years: GDPR now joins the Health Insurance Portability and Accountability Act (HIPAA), the Payment Card Industry Data Security Standard (PCI DSS) and the Basel Committee on Banking Supervision (BCBS).

GDPR 100

GDPR e-Discovery Compliance Metadata 100

Hunton Privacy

MARCH 16, 2017

Sotto on the new cybersecurity regulations from the New York State Department of Financial Services (“NYDFS”). The NYDFS regulations impose significant cybersecurity requirements on impacted businesses that will dictate how they plan for, respond to and recover from data security events.

Financial Services 40

Financial Services Insurance Cybersecurity Privacy 40

IBM Big Data Hub

FEBRUARY 14, 2024

They can also help businesses predict future events and understand why past events occurred. By infusing AI into IT operations , companies can harness the considerable power of NLP, big data, and ML models to automate and streamline operational workflows, and monitor event correlation and causality determination.

Artificial Intelligence 86

Artificial Intelligence Retail Unstructured data Insurance 86

Data Protection Report

OCTOBER 24, 2022

On October 18, 2022, the New York Department of Financial Services announced a settlement with EyeMed, a licensed life, accident, and health insurer, with respect to a security incident that occurred in 2020. The settlement requires EyeMed to pay $4.5 million, among other things. Background. million.

Cybersecurity 52

Cybersecurity Personal data Risk Financial Services 52

eSecurity Planet

JUNE 16, 2022

However, basic cybersecurity tools and practices, like patching , strong passwords , and multi-factor authentication (MFA), “can prevent 80 to 90% of cyberattacks,” said Anne Neuberger, deputy national security advisor for cyber and emerging technologies, during a White House press conference in Sept. Cyberattack Statistics. Other methods.

Ransomware 137

Ransomware Cybersecurity Phishing Encryption 137

KnowBe4

MAY 31, 2023

That's right – the financial services industry, at least according to cybersecurity vendor Armorblox's 2023 Email Security Threat Report. Blog post with links: [link] [Live Demo] Ridiculously Easy Security Awareness Training and Phishing Old-school awareness training does not hack it anymore. Yup – shoe store.

Phishing 74

Phishing File names Security awareness Risk 74

The Last Watchdog

MARCH 1, 2019

There’s a frantic scramble going on among those responsible for network security at organizations across all sectors. Enterprises have dumped small fortunes into stocking their SOCs (security operations centers) with the best firewalls, anti-malware suites, intrusion detection, data loss prevention and sandbox detonators money can buy.

Digital transformation 141

Digital transformation Marketing Analytics Risk 141

Adam Levin

NOVEMBER 30, 2018

If you prefer a more laid back approach, sign up for free transaction alerts from financial services institutions and credit card companies, or subscribe to a credit and identity monitoring program, 3. There are places to check your credit score for free online, and most credit cards let you see your FICO score. Manage the damage.

Financial Services 66

Financial Services Encryption Passwords Communications 66

Data Matters

MARCH 12, 2019

Over the last few years, States have enacted increasingly aggressive legislation concerning data privacy and security, raising concerns that companies will be subject to a patchwork of different standards. Aligning the Safeguards Rule with State Regimes.

Privacy 68

Privacy IT Information Security Insurance 68

Data Protection Report

JANUARY 7, 2019

The two-year transitional period under the New York State Department of Financial Services (“DFS””) Cybersecurity Regulation , 23 NYCRR 500 (the “Regulation”), will expire on March 1, 2019, with the final remaining requirement becoming effective. Third-party service provider risk management program. Upcoming certifications.

Cybersecurity 40

Cybersecurity Compliance Financial Services Risk 40

HL Chronicle of Data Protection

MARCH 16, 2020

On Tuesday, 3 March 2020, we welcomed our financial services clients in London to a lively panel event, which covered the multitude of issues which arise in a cybersecurity incident. Peter Marta. Arwen Handley. Philip Parish. Nicola Fulford.

Cybersecurity 59

Cybersecurity Financial Services Risk Insurance 59

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. Raising awareness about ransomware is a baseline security measure. As training sessions have little influence over staff for every potential attack, it makes added security more imperative.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

Data Matters

NOVEMBER 2, 2021

We will also discuss a developing range of services referred to as digital asset “prime brokerage” — describing the suite of services typically provided by these prime brokers and comparing them to traditional offerings of prime brokers in the securities space.

Blockchain 88

Blockchain Marketing Access Risk 88

HL Chronicle of Data Protection

MARCH 14, 2019

The proposed changes to the Safeguards Rule add a number of more detailed security requirements, whereas the proposed changes to the Privacy Rule are more focused on technical changes to align the Rule with changes in law over the past decade. It includes general, high level elements of a security program, but lacks detailed security steps.

Privacy 40

Privacy Risk Cybersecurity Information Security 40

KnowBe4

FEBRUARY 14, 2023

For KnowBe4 customers, we have a few templates with this topic in the Current Events. I talk often about the back-and-forth that exists between cybercriminal groups and security vendors. Security solutions improve their detection capabilities, and threat actors work tirelessly to find new ways to evade detection.

Phishing 80

Phishing Security awareness Compliance Risk 80

Data Matters

FEBRUARY 25, 2021

This follows the FCA’s announcement in its 2020-21 business plan that payment services were one of its main supervisory priorities 1 and its temporary guidance of July 9, 2020, on prudential risk management and safeguarding in light of the COVID-19 pandemic ( Temporary COVID Guidance ). its Perimeter Guidance Manual (PERG).

Authentication 68

Authentication Paper Risk Insurance 68

CGI

MAY 26, 2016

Financial institutions in the U.S. The combined and increased focus of the Securities Exchange Commission (SEC), the Financial Industry Regulatory Authority (FINRA) and the Commodity Futures Trading Commission (CFTC) on cybersecurity issues are indicative of U.S. Security incident response plan testing. Controls testing.

Cybersecurity 40

Cybersecurity Risk Financial Services Compliance 40

IBM Big Data Hub

FEBRUARY 23, 2024

ML and DL lie at the core of predictive analytics, enabling models to learn from data, identify patterns and make predictions about future events. Conversational AI is also making significant strides in other industries such as education, insurance and travel. Ensuring fairness and inclusivity in conversational AI is crucial.

Analytics 103

Analytics Artificial Intelligence Marketing Education 103

DLA Piper Privacy Matters

AUGUST 23, 2021

The PIPL also anticipates that a new publicly-available entity list may be published, listings foreign organisations to whom local China organisations may not transfer personal information, where such transfer may harm national security or public interest. This aligns with a similar provision in the new Data Security Law.

Data Privacy 111

Data Privacy Privacy Compliance Analytics 111

KnowBe4

JUNE 20, 2023

The recent information exposes the increasing dangers in the world of cryptocurrency and the urgent requirement for more robust security measures. Perhaps more importantly, do you know how effective new-school security awareness training is as a mission-critical layer in your security stack? Download this new report to find out!

Data breaches 71

Data breaches Phishing Security awareness Ransomware 71

ARMA International

AUGUST 2, 2019

According to the FTC’s press release, the data breach included “names and dates of birth, Social Security numbers, physical addresses, and other personal information that could lead to identity theft and fraud.” (See To that end, the settlement also requires Equifax to “implement a comprehensive information security program.”

Cloud 41

Cloud Data breaches Encryption Access 41

DLA Piper Privacy Matters

SEPTEMBER 29, 2017

In particular, the AU-054 does not cover fraud prevention systems implemented by insurance, capitalization, reassurance, assistance companies or insurance brokers CMF (these companies must refer to Single Authorization No. 311-2 of the Code Monétaire et Financier. . Parent companies of financing companies.

Personal data 40

Personal data Financial Services Risk Insurance 40

DLA Piper Privacy Matters

JULY 30, 2019

Effective cybersecurity requires organizations to move beyond perimeter defense of their own network to protecting sensitive data in the hands of service providers. From a security and legal perspective, service provider cybersecurity requires significant attention and coordination by all parties both before and after hitting the breach.

Data breaches 45

Data breaches Cybersecurity Financial Services Risk 45

Cyber Info Veritas

JULY 19, 2018

This is according to a recent survey conducted by Soha Systems, and according to one of the speeches delivered by the Superintendent of the New York State Department of Financial Services, Mr. Benjamin Lawsky, “ A company’s cybersecurity is only as strong as the cybersecurity of its third-party vendors ”.

Risk 40

Risk Cybersecurity Compliance Data breaches 40

Data Matters

JANUARY 2, 2018

In any event, betting against federal data breach legislation has been the right call every year since California adopted the first state notification law in 2003. A number of countries are suggesting data localization as a way to secure their systems, which would mean significant changes for companies operating there.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Krebs on Security

SEPTEMBER 27, 2019

That action set off a chain of events that led another financial institution that helps MyPayrollHR process payments to briefly pull almost $26 million out of checking accounts belonging to employees at more than 1,000 companies that use MyPayrollHR. .” 1, 2019 to Aug. His passport also was seized.

Financial Services 246

Financial Services Insurance Cloud IT 246