IT Governance

JUNE 1, 2023

IT Governance found 98 publicly disclosed security incidents in May 2023, accounting for 98,226,877 breached records. We break down the month’s cyber security landscape for each month, and you can find more information about our list and the biggest security incidents of the month.

Data breaches 98

Data breaches Ransomware Insurance Personal data 98

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. NAIC Adopts Revised Risk-Based Capital Bond Factors for Life Insurers.

Insurance 88

Insurance e-Delivery Paper Sales 88

Adam Levin

JUNE 25, 2018

South Carolina became the first state to pass a law requiring all insurance entities to create and maintain a cybersecurity and data breach response program. . The law itself was drafted by the National Association of Insurance Commissioners’ Cybersecurity Working Group, and was adapted from a similar proposal in New York.

Insurance 40

Insurance Cybersecurity Data breaches Government 40

DLA Piper Privacy Matters

MAY 17, 2018

DLA Piper and Aon have launched a guide ‘ The price of data security ‘, ahead of the General Data Protection Regulation (GDPR), effective from 25 May 2018. The guide reviews the insurability of GDPR fines across Europe, which can reach up to €20 million or, if higher, up to 4% of a group’s annual global turnover.

Insurance 45

Insurance GDPR Data breaches Personal data 45

Thales Cloud Protection & Licensing

FEBRUARY 9, 2023

How do you secure a Super Bowl? Hopefully, security analysts will be watching closest of all. It’s safe to say that the last thing on anyone’s mind come Super Bowl Sunday will be the security of their digital interactions. First, we listed a lot of glittering generalities surrounding Super Bowl security spaces.

Security 71

Security Authentication Phishing Access 71

eSecurity Planet

OCTOBER 18, 2021

The legal complaint [PDF] notes that on July 9, 2019, the day it was hit by a ransomware attack, Springhill Memorial Hospital contended that the event had “not affected patient care.” ” Cyber Insurance No Longer Reliable. Also read: Cyber Insurers Pull Back Amid Increase in Cyber Attacks, Costs. .

Ransomware 103

Ransomware Insurance Digital transformation Cybersecurity 103

IT Governance

NOVEMBER 1, 2022

We identified 102 security incidents throughout the month, which is the second largest figure so far this year – trailing only August (112). Meanwhile, be sure to subscribe to our Weekly Round-up to receive the latest cyber security news and advice delivered straight to your inbox. Cyber attacks.

Data breaches 111

Data breaches Ransomware Insurance Phishing 111

Security Affairs

JANUARY 6, 2019

The Dark Overlord hacking group claims to have stolen a huge trove of documents from the British insurance company Hiscox, Hackers stole “hundreds of thousands of documents,” including tens of thousands files related to the 9/11 terrorist attacks. “What’s the takeaway? .

Insurance 111

Insurance Data breaches Sales Government 111

eSecurity Planet

MARCH 18, 2022

Many security professionals think that if they have done the hard work of securing their organization, that should be enough. Even though drafting IT security policies can be a pain, formal policies provide a valuable resource to protect both the IT team and their organization. Written security policies.

IT 122

IT Compliance Security Access 122

Data Matters

SEPTEMBER 3, 2020

The National Association of Insurance Commissioners (NAIC) held its Summer 2020 National Meeting (Summer Meeting) from July 27 to August 14, 2020. Annuity Suitability Working Group Drafting FAQ Document to Facilitate Uniformity in State Adoption of Revised Suitability in Annuity Transactions Model Regulation.

Insurance 68

Insurance Paper Artificial Intelligence Big data 68

Security Affairs

APRIL 8, 2021

Group-IB , a global threat hunting and adversary-centric cyber intelligence company, discovered that user data of the Swarmshop card shop have been leaked online on March 17, 2021. Group-IB notified the national CERTs in the above-mentioned countries about the breach so they could take the necessary steps to mitigate the threat.

Passwords 108

Passwords Insurance Personal data Sales 108

Security Affairs

FEBRUARY 15, 2019

Moscow police department operatives, with the participation of Group-IB experts, took down a group of phone scammers who for several years have been extorting money from the elderly. The money was used to purchase real estate, cars, collectors’ coins, jewellery and securities.

Insurance 82

Insurance Education Phishing Communications 82

Security Affairs

NOVEMBER 30, 2020

“Sources said the county is in the process of paying the $500,000 ransom as it’s insured for such attacks.” We commenced an immediate investigation that included taking certain systems offline and working with computer forensic specialists to determine the nature and scope of the event. Pierluigi Paganini.

Computer and Electronics 103

Computer and Electronics Ransomware Insurance Encryption 103

Hunton Privacy

NOVEMBER 6, 2014

Hunton & Williams Insurance Litigation & Counseling partner Lon Berk reports: As the demand for cyber insurance has skyrocketed, so too has the cost. New payment technologies, however, will change the need for this type of cyber insurance. As these payment technologies become prevalent in the U.S.,

Insurance 40

Insurance Retail Sales Risk 40

The Last Watchdog

MAY 10, 2021

Back in the mid-1990s, big banks and insurance companies came up with something called “bespoke assessments” as the approach for assessing third party vendor risk. It can be a big strain on resources just to respond to security questionnaires,” he says. “At This took the form of programmatic audits. Visibility boost.

Risk 196

Risk Insurance Access Security 196

Schneier on Security

FEBRUARY 28, 2024

In the first week of January, the pharmaceutical giant Merck quietly settled its years-long lawsuit over whether or not its property and casualty insurers would cover a $700 million claim filed after the devastating NotPetya cyberattack in 2017. The 9/11 attacks cost insurers and reinsurers $47 billion. 11, 2001, terrorist attacks.

Insurance 90

Insurance Government Cybersecurity Risk 90

DLA Piper Privacy Matters

NOVEMBER 6, 2018

From a brief search online it is easy to find various different claimant law firms advertising off the back of large public data breaches the possibility to bring a group claim for compensation. The solution is to insure against ruinous group claims…. These make for a potentially toxic mix.

Insurance 45

Insurance Data breaches Personal data GDPR 45

IT Governance

JUNE 30, 2022

We identified 80 security incidents during the month, resulting in 34,908,053 compromised records. Meanwhile, be sure to subscribe to our Weekly Round-up to receive the latest cyber security news and advice delivered straight to your inbox. If you’re facing a cyber security disaster, IT Governance is here to help.

Data breaches 136

Data breaches Ransomware Personal data Blockchain 136

eSecurity Planet

JANUARY 5, 2024

It aims to prevent unauthorized access, manage data movement, and guard against potential security threats. When creating the firewall policy draft, these elements make up a detailed set of rules and guidelines controlling the use, management, and security configurations of a firewall inside an organization.

Compliance 103

Compliance Access Communications Cybersecurity 103

Everteam

DECEMBER 27, 2022

1 event organized by our partner Viveris. Jean-Mathieu BONNEFOUS – Orano Group. In this episode, we are pleased to welcome Jean-Mathieu Bonnefou, who talks about the records management policy within the Orano group. Adrian CIOCAN – La MAIF / MAIF Insurance. Pierre-Vincent Bruys – SAFRAN Group.

Records Management 52

Records Management Information governance Archiving Government 52

DLA Piper Privacy Matters

DECEMBER 7, 2017

Two recent developments in the United Kingdom highlight the growing risk of privacy litigation and “group actions” which is likely to further increase following the enactment of the General Data Protection Regulation (“ GDPR “) in May 2018. ”, discussed further below. It is suggested that in the region of 5.4

Risk 40

Risk Privacy GDPR Data breaches 40

eSecurity Planet

APRIL 29, 2024

The problem: Microsoft Threat Intelligence published a report on how a Russian threat group, known as APT28 or Forest Blizzard, used customized malware to exploit the CVE-2022-38028 vulnerability in the Windows Print Spooler to gain elevated permissions. The fix: Cisco’s event notice recommends immediate upgrade of affected devices.

Cybersecurity 67

Cybersecurity Ransomware Access Insurance 67

IBM Big Data Hub

MARCH 20, 2024

With more dependency on technology and third and fourth parties, expectations are increasing for organizations to continue delivering critical business services through a major disruption in a safe and secure manner. This means actively minimizing downtime and closing gaps in the supply chain to remain competitive.

Cloud 80

Cloud Financial Services Risk Business Services 80

Hunton Privacy

APRIL 1, 2020

Our featured group of speakers will discuss the legal, medical and practical issues that critical infrastructure companies are facing during the current COVID-19 pandemic. Join us on April 7, 2020, for an in-depth webinar on Managing Critical Infrastructure Workforce During the COVID-19 Pandemic. Register for this program now.

Insurance 71

Insurance Privacy Security 71

Adam Levin

JUNE 30, 2020

No industry, category, size, or group is safe from this cyber scourge. In the same survey, 35 percent thought CEOs should be fined for a cyber failure, and 30 percent wanted to see a CEO lose his or her right to run any company following a serious cyber event. 1-99-employee companies are a target. We hear about the big ones.

Ransomware 74

Ransomware Insurance Cybersecurity Manufacturing 74

eSecurity Planet

SEPTEMBER 14, 2022

In the 2021 FBI report, individuals over 60 years of age had the highest number of complaints of any age group with 92,371 and the highest amount of reported losses with $1.68 Of the six age groups listed (under 20, 20-29, 30-39, 40-49, 50-59, 60-69), the three oldest age groups reported $4.13 for individuals under 40.

Energy and Utilities 120

Energy and Utilities Phishing Blockchain Cybersecurity 120

Krebs on Security

JULY 27, 2020

based cyber intelligence firm Hold Security has been monitoring the communications between and among a businesses ID theft gang apparently operating in Georgia and Florida but targeting businesses throughout the United States. For the past several months, Milwaukee, Wisc. ” PHANTOM OFFICES. . ” PHANTOM OFFICES.

Energy and Utilities 354

Energy and Utilities Computer and Electronics Insurance Risk 354

IT Governance

MARCH 1, 2023

IT Governance is dedicated to helping organisations tackle the threat of cyber crime and other information security weaknesses. Meanwhile, be sure to subscribe to our Weekly Round-up to receive the latest cyber security news and advice delivered straight to your inbox.

Data breaches 130

Data breaches Ransomware e-Delivery Government 130

IT Governance

SEPTEMBER 1, 2022

Meanwhile, the bastion of password security, LastPass, announced that its systems had been breached – although the organisation is confident that customers’ details remain secure. In total, we identified 112 publicly disclosed security incidents in August, resulting in 97,456,345 compromised records.

Data breaches 116

Data breaches Ransomware Energy and Utilities Phishing 116

Hunton Privacy

JANUARY 25, 2017

Department of Health and Human Services’ Office for Civil Rights (“OCR”) entered into a resolution agreement with MAPFRE Life Insurance Company of Puerto Rico (“MAPFRE”) relating to a breach of protected health information (“PHI”) contained on a portable storage device. On January 18, 2017, the U.S.

Security awareness 40

Security awareness Insurance Risk Compliance 40

The Security Ledger

AUGUST 1, 2019

» Related Stories Israeli Group Exploited WhatsApp to Spy on Users Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk Episode 149: How Real is the Huawei Risk? The information security industry has been raising red flags about mobile malware for more than a decade. Read the whole entry. »

Military 40

Military Insurance Risk Government 40

Hunton Privacy

FEBRUARY 11, 2022

Under the proposal, RIAs would be required to submit the new Form ADV-C promptly, but in no event more than 48 hours after having a reasonable basis to conclude that a “significant adviser cybersecurity incident” or a “significant fund cybersecurity incident” had occurred or is occurring.

Cybersecurity 102

Cybersecurity Risk Access Insurance 102

eSecurity Planet

FEBRUARY 16, 2021

The internet is fraught with peril these days, but nothing strikes more fear into users and IT security pros than the threat of ransomware. Raising awareness about ransomware is a baseline security measure. As training sessions have little influence over staff for every potential attack, it makes added security more imperative.

Ransomware 97

Ransomware Encryption Insurance Cloud 97

IT Governance

JANUARY 5, 2018

Carrying out a risk assessment is the only way to ensure that the cyber security controls chosen for your organisation are appropriate to the risks it may face. What does a cyber security risk assessment include? A cyber security risk assessment identifies information assets that could be affected by a cyber attack.

Risk 72

Risk Information Security Insurance Security 72

eSecurity Planet

MARCH 17, 2023

Whether you’re operating a global enterprise network or a small family business, your network’s security needs to be optimized with tools, teams, and processes to protect customer data and valuable business assets. Also read: What is Network Security?

Security 120

Security Encryption Analytics Cloud 120

eSecurity Planet

SEPTEMBER 10, 2021

As ransomware threats loom, we look at where backups fall short, and what to keep in mind to optimize network and data security. Read more: REvil Ransomware Group Resurfaces After Two Months Away. A secure backup can allow leadership to say “no thanks” to the offer of a decryption key. Why Are Backups Critical?

Ransomware 118

Ransomware Encryption Cybersecurity Access 118

KnowBe4

FEBRUARY 14, 2023

For KnowBe4 customers, we have a few templates with this topic in the Current Events. I talk often about the back-and-forth that exists between cybercriminal groups and security vendors. Security solutions improve their detection capabilities, and threat actors work tirelessly to find new ways to evade detection.

Phishing 85

Phishing Security awareness Compliance Risk 85