Data Matters

SEPTEMBER 7, 2022

The National Association of Insurance Commissioners (NAIC) held its Summer 2022 National Meeting (Summer Meeting) August 9–13, 2022. 1. NAIC to Develop New Privacy Model Law. This post summarizes the highlights from this meeting in addition to interim meetings held in lieu of taking place during the Summer Meeting.

Insurance 78

Insurance Paper Privacy Risk 78

IT Governance

NOVEMBER 13, 2023

On 14 September, Mulkay discovered that the compromised files contained personal information, including “name, address, date of birth, Social Security number, driver’s license number or state ID, medical treatment information, and health insurance information”. Records breached: 79,582 Ontario hospitals update: information relating to 5.6

Data Privacy 85

Data Privacy Privacy Security Data breaches 85

IT Governance

FEBRUARY 14, 2024

Compromised data includes policyholders’ and their families’ civil status, dates of birth and social security numbers, as well as the name of their health insurer and information relating to their contracts. TB KSA Architecture Source New Construction and real estate USA Yes 1.5 TB Cole, Cole, Easley & Sciba Source New Legal USA Yes 1.5

Data Privacy 52

Data Privacy Manufacturing Privacy Security 52

DLA Piper Privacy Matters

DECEMBER 7, 2017

Two recent developments in the United Kingdom highlight the growing risk of privacy litigation and “group actions” which is likely to further increase following the enactment of the General Data Protection Regulation (“ GDPR “) in May 2018. ”, discussed further below.

Risk 40

Risk Privacy GDPR Data breaches 40

Security Affairs

NOVEMBER 8, 2023

TransForm is a non-profit group that provides IT services to the above hospitals. The company notified law enforcement authorities, including local police departments, Ontario Provincial Police, Interpol and the FBI, and all relevant regulatory organizations including the Ontario Information and Privacy Commissioner.

Ransomware 120

Ransomware Insurance Access Phishing 120

Data Matters

JUNE 22, 2022

Connecticut has passed a new state data privacy law slated to go into effect on July 1, 2023. Consistent with all of the state data privacy laws we have seen to date, the Connecticut law does not provide for a private right of action to broadly enforce the privacy rights provisions of the law.

Data Privacy 88

Data Privacy Privacy Personal data Sales 88

IT Governance

FEBRUARY 21, 2024

Welfare Benefits Plan Source 1 ; source 2 New Healthcare USA Yes 13,079 Insurance ACE/Humana Inc. Following information from Microsoft , Open AI closed accounts associated with the Forest Blizzard (Strontium), Emerald Sleet (Thallium), Crimson Sandstorm (Curium), Charcoal Typhoon (Chromium) and Salmon Typhoon (Sodium) threat groups.

Data Privacy 52

Data Privacy Manufacturing Privacy Energy and Utilities 52

The Last Watchdog

APRIL 30, 2019

Related: How NIST protocols fit SMBs The essence of the NIST CSF is showing up in the privacy regulations now being enforced in Europe, as well as in a number of U.S. And the protocols it lays out inform a wide range of best-practices guides put out by trade groups and proprietary parties, as well. Wrenn said. “So The stakes are high.

Cybersecurity 173

Cybersecurity Insurance Security Privacy 173

Security Affairs

MAY 9, 2019

US DoJ indicted a member of sophisticated China-based hacking group for series of computer intrusions. The group is also responsible for the 2015 Health Insurer Anthem data breach. The group targeted at least four US companies between February 2014 and January 2015, court documents only named Anthem as one of the victims.

Insurance 73

Insurance Data breaches Phishing Privacy 73

Krebs on Security

JUNE 18, 2021

The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 Title insurance protects homebuyers from the prospect of someone contesting their legitimacy as the new homeowner. Title insurance is not mandated by law, but most lenders require it as part of any mortgage transaction.

Insurance 272

Insurance Risk Financial Services Mining 272

Security Affairs

NOVEMBER 10, 2023

Exposed information varied by individual and may include some combination of certain individuals’ names, social Security number, health insurance information, date of birth, and medical information. The group claimed to have stolen data belonging to 2.5 ” reads the notice of data breach sent to the Maine Attorney General.

Data breaches 115

Data breaches Ransomware Insurance Manufacturing 115

IT Governance

OCTOBER 31, 2023

Incident details: The Russian hacking group APT28 has been targeting a range of unspecified French organisations for the past two years, according to an ANSSI report. Records breached: 512,000 documents, with details of insurance investigations, vehicle registration certificates, notices of car seizures and payment card details.

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

Security Affairs

JUNE 2, 2023

In April, the non-profit health insurer Point32Health took systems offline in response to a ransomware attack that took place on April 17. The insurer immediately launched an investigation into the incident with the help of third-party cybersecurity experts to determine the extent of the incident.

Ransomware 91

Ransomware Insurance Data breaches Cybersecurity 91

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. NAIC Adopts Revised Risk-Based Capital Bond Factors for Life Insurers.

Insurance 88

Insurance e-Delivery Paper Sales 88

IT Governance

NOVEMBER 20, 2023

a property management company in Kentucky Incident details: The ransomware group Hunters International has added Homeland, Inc. According to databreaches.net , the group exfiltrated tenant information, service management information, financial data, business data, property data, employee data and sensitive business information.

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

Data Matters

AUGUST 17, 2023

law enforcement, immigration, employment, insurance and health), and so have a greater impact across society – including in relation to vulnerable groups. The post UK ICO Scrutinizes Use of Generative AI appeared first on Data Matters Privacy Blog.

Insurance 78

Insurance Communications Risk Privacy 78

Data Matters

SEPTEMBER 3, 2020

The National Association of Insurance Commissioners (NAIC) held its Summer 2020 National Meeting (Summer Meeting) from July 27 to August 14, 2020. Annuity Suitability Working Group Drafting FAQ Document to Facilitate Uniformity in State Adoption of Revised Suitability in Annuity Transactions Model Regulation.

Insurance 68

Insurance Paper Artificial Intelligence Big data 68

DLA Piper Privacy Matters

MAY 17, 2018

The guide reviews the insurability of GDPR fines across Europe, which can reach up to €20 million or, if higher, up to 4% of a group’s annual global turnover. It also looks at insurability of costs associated with GDPR non-compliance (e.g. Criminal penalties are almost never insurable.

Insurance 45

Insurance GDPR Data breaches Personal data 45

Data Matters

DECEMBER 2, 2020

financial information, life/health insurance information, specified medical information, information leading to identification of a vulnerable adult, child, or young person who is the subject of an investigation or relating to court proceedings involving a child and young person, or.

Data Privacy 74

Data Privacy Privacy Data breaches Personal data 74

Security Affairs

MARCH 17, 2024

Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 112

Data breaches Security Computer and Electronics Ransomware 112

Security Affairs

JUNE 12, 2023

The Clop ransomware group has stolen stole personal and health information of 489,830 individuals as a result of a ransomware attack on the technology firm Intellihartx. Other victims of the Clop ransomware are City of Toronto , Rubrik , Onex, Axis, Bank, Rio Tinto, Hitachi Energy , and Virgin Group.

Data breaches 91

Data breaches Ransomware Insurance Data Privacy 91

IT Governance

JUNE 1, 2023

We break down the month’s cyber security landscape for each month, and you can find more information about our list and the biggest security incidents of the month. million) Clinical test data stolen from biotech company Enzo Biochem (2.47 million) Apria Healthcare suffers security breach (1.8

Data breaches 98

Data breaches Ransomware Insurance Personal data 98

Information Governance Perspectives

MAY 10, 2020

In May of 2020 I was honored to speak at the MERv conference with John Frost of Box on the topic of Using Information Governance with a Privacy Compliance Plan as the Fulcrum for Data Privacy and Continuous Compliance. Privacy makes data governance ethical and tangible, and compliance leaders understand that.

Compliance 52

Compliance Information governance Privacy Data Privacy 52

Hunton Privacy

DECEMBER 30, 2014

On December 29, 2014, the Commissioner for Data Protection and Freedom of Information of the German state Rhineland-Palatinate issued a press release stating that it imposed a fine of €1,300,000 on the insurance group Debeka. Debeka purportedly wanted this address data to market insurance contracts to these employees.

Insurance 40

Insurance Sales Personal data Marketing 40

IT Governance

AUGUST 3, 2020

Canadian insurer Heartland Farm Mutual says an employee’s email account breached (unknown). Brazilian health insurer Hapvida discloses cyber attack (unknown). Data breach as GEDmatch has privacy experts worried (1.4 Group of free VPN apps expose user data on publicly accessible database (20 million). In other news….

Data breaches 141

Data breaches Insurance Ransomware Personal data 141

CGI

MAY 27, 2016

Time and tide waits for no man – IoT in Insurance. This old saying could also be applied for what is happening in the insurance market with IoT and that given the drive behind IoT in both the consumer and business markets. For example, car insurance could be varied between theft and fully comprehensive when the Car is not being used.

Insurance 40

Insurance IoT Marketing Manufacturing 40

Hunton Privacy

APRIL 1, 2020

Our featured group of speakers will discuss the legal, medical and practical issues that critical infrastructure companies are facing during the current COVID-19 pandemic. Join us on April 7, 2020, for an in-depth webinar on Managing Critical Infrastructure Workforce During the COVID-19 Pandemic. Register for this program now.

Insurance 71

Insurance Privacy Security 71

Hunton Privacy

NOVEMBER 6, 2014

Hunton & Williams Insurance Litigation & Counseling partner Lon Berk reports: As the demand for cyber insurance has skyrocketed, so too has the cost. New payment technologies, however, will change the need for this type of cyber insurance. As these payment technologies become prevalent in the U.S.,

Insurance 40

Insurance Retail Sales Risk 40

IT Governance

SEPTEMBER 1, 2021

Travel and medical insurance provider guard.me million) Indra hacking group blamed for attack on Iranian railway system (unknown) Willdan Group, Inc. Travel and medical insurance provider guard.me million) Indra hacking group blamed for attack on Iranian railway system (unknown) Willdan Group, Inc.

Data breaches 140

Data breaches Ransomware Insurance Data migration 140

DLA Piper Privacy Matters

NOVEMBER 6, 2018

From a brief search online it is easy to find various different claimant law firms advertising off the back of large public data breaches the possibility to bring a group claim for compensation. The solution is to insure against ruinous group claims…. These make for a potentially toxic mix.

Insurance 45

Insurance Data breaches Personal data GDPR 45

Data Matters

DECEMBER 11, 2018

The National Association of Insurance Commissioners (NAIC) held its Fall 2018 National Meeting (Fall Meeting) in San Francisco, California, from November 15 to 18, 2018. NAIC Continues its Evaluation of Insurers’ Use of Big Data. NAIC Exposes Group Capital Calculation Field Testing Template For Public Comment.

Insurance 68

Insurance Paper Risk Big data 68

IT Governance

NOVEMBER 1, 2022

Mexico confirms hack of military records (unknown) Randolph-area school district disables its own website following transphobic hack (unknown) Australia’s Telstra hit by data breach, two weeks after attack on Optus (unknown) Patient details compromised in cyber attack on health provider Pinnacle (unknown) CHI Health faces ‘IT security incident’ impacting (..)

Data breaches 111

Data breaches Ransomware Insurance Phishing 111

Data Matters

JANUARY 2, 2018

This past year was marked by ever more significant data breaches, growing cybersecurity regulatory requirements at the state and federal levels and continued challenges in harmonizing international privacy and cybersecurity regulations. As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR.

Cybersecurity 68

Cybersecurity Privacy Data breaches GDPR 68

Hunton Privacy

DECEMBER 1, 2020

Carrefour France and Carrefour Banque are both affiliates of the French retail group, the Carrefour Group. The group has diversified its activities into the banking and insurance, travel agency and e-commerce sectors. The CNIL carried out online inspections on the carrefour.fr and carrefour-banque.fr

GDPR 91

GDPR Personal data Data collection Marketing 91

Hunton Privacy

FEBRUARY 25, 2020

In the final part of our Never Stop Learning podcast series, Lisa Sotto , partner and chair of Hunton Andrews Kurth’s Privacy and Cybersecurity practice, and Eric Friedberg, Co-President of Stroz Friedberg, LLC, and Aon’s Cyber Solutions Group, discuss practical solutions in preparing for a cyber incident.

Insurance 71

Insurance Data breaches Cybersecurity Privacy 71

Security Affairs

APRIL 25, 2021

A member of the FIN7 group was sentenced to 10 years in prison Is BazarLoader malware linked to Trickbot operators? A new round of the weekly SecurityAffairs newsletter arrived! Every week the best security articles from Security Affairs free for you in your email box.

Security 86

Security Ransomware Insurance Privacy 86

Data Matters

JUNE 29, 2018

Jerry Brown signed into law the California Consumer Privacy Act of 2018 (AB 375). This legislation was enacted on an extraordinarily accelerated timeframe as part of compromise with the sponsor of a comparable privacy ballot initiative, which had qualified to be placed before state voters on Election Day in November 2018.

GDPR 79

GDPR Privacy Sales Data breaches 79