2017, Information Security, Insurance and IT - Information Management Today

Rise in cyber attacks leads to cyber insurance business soaring

IT Governance

FEBRUARY 5, 2018

Increased interest in cyber insurance. With more than 800 million records being leaked in 2017 ( find out more in our Breaches and Hacks Blog Archive ), it’s not surprising that cyber insurance business has increased in recent months. Insurers assess an organisation’s cyber risk to set premium levels.

Insurance

Insurance Risk Government Paper

Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk

The Security Ledger

AUGUST 20, 2019

We talk to Bruce McDonnell of the East West Institute about how insurers are responding. Related Stories Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware Podcast Episode 117: Insurance Industry Confronts Silent Cyber Risk, Converged Threats NotPetya Horror Story Highlights Need for Holistic Security.

Insurance

Insurance Risk Healthcare Manufacturing

Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION

Security Affairs

APRIL 28, 2024

Companies and Government Agencies ArcaneDoor – New espionage-focused campaign found targeting perimeter network devices Israel Tried to Keep Sensitive Spy Tech Under Wraps.

Security

Security Data breaches Ransomware Mining

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

NYDFS settles cybersecurity regulation matter for $1.8 million

Data Protection Report

JUNE 2, 2021

million settlement with two related insurance companies, relating to violations of two different requirements of the NYDFS cybersecurity regulation during the period 2018 to 2019. Readers may recall that NYDFS’ cybersecurity regulation went into effect in March of 2017. NYDFS Cybersecurity Regulation.

Cybersecurity

Cybersecurity Insurance Financial Services Phishing

Privacy and Cybersecurity Top 10 for 2018

Data Matters

JANUARY 2, 2018

As we begin this New Year, here is list of the top 10 privacy and cybersecurity issues for 2018: EU GDPR. Smaller infringements, such as an organization’s failure to have their records in order, could result in fines of up to 2 percent of annual global turnover or €10 million (whichever is greater). Supreme Court Developments.

Cybersecurity

Cybersecurity Privacy Data breaches GDPR

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Data Matters

JUNE 24, 2021

On June 15, 2021, the SEC announced settled charges against First American Title Insurance Company (First American) for disclosure controls and procedures violations related to a cybersecurity vulnerability that exposed sensitive customer information. SEC Statement and Guidance on Public Company Cybersecurity Disclosures.

Cybersecurity

Cybersecurity Financial Services Risk Compliance

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

IT Governance

MAY 3, 2018

The Department of Health and Social Care has signed a deal with Microsoft to upgrade the NHS’s extensive IT estate to Windows 10 in an attempt to bolster its cyber resilience in the wake of last year’s WannaCry ransomware outbreak. Unsurprisingly, Equifax plans to spend heavily on IT and data security in the coming months.

Computer and Electronics

Computer and Electronics Insurance Data breaches Information Security

Record Data Breach Settlement in Anthem Class Action

Hunton Privacy

JUNE 26, 2017

On June 23, 2017, Anthem Inc., the nation’s second largest health insurer, reached a record $115 million settlement in a class action lawsuit arising out of a 2015 data breach that exposed the personal information of more than 78 million people.

Data breaches

Data breaches Insurance Information Security Compliance

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

Security Affairs

MAY 9, 2020

30), we have observed three SilverTerrier actors/groups launch a series of 10 COVID-19 themed malware campaigns.” 30), we have observed three SilverTerrier actors/groups launch a series of 10 COVID-19 themed malware campaigns.” billion in global losses. “Over the past 90 days (Jan. “Over the past 90 days (Jan.

Government

Government Energy and Utilities Insurance Phishing

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

NOVEMBER 29, 2019

Compared to its predecessors, the sixth “Hi-Tech Crime Trends” report is the first to contain chapters devoted to the main industries attacked and covers the period from H2 2018 to H1 2019, as compared to the period from H2 2017 to H1 2018. The threat actor mainly targets insurance, consulting, and construction companies.

IT

IT Military Cybersecurity Phishing

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. With evolving attack methodologies due to machine learning, quantum computing, and sophisticated nation-state hackers, security startups are receiving record funding.

Cybersecurity

Cybersecurity Cloud Compliance Analytics

The Week in Cyber Security and Data Privacy: 23–29 October 2023

IT Governance

OCTOBER 31, 2023

Thousands of drivers have sensitive data exposed to hackers in major IT breach Date of breach: Unclear, but breached documents date back to 2017. Incident details: A security vulnerability in a third party left personal data exposed of thousands of motorists who had their vehicle towed on behalf of the An Garda Síochána.

Data Privacy

Data Privacy Privacy Data breaches Security

OCR Fines Texas Health System For Alleged HIPAA Privacy Rule Violation

Hunton Privacy

MAY 17, 2017

On May 10, 2017, the U.S. million civil monetary penalty against Memorial Hermann Health System (“MHHS”) for alleged violations of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) Privacy Rule. . Department of Health and Human Services’ Office for Civil Rights (“OCR”) announced a $2.4

Privacy

Privacy Compliance Insurance IT

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

Hunton Privacy

JULY 11, 2017

On July 10, 2017, the Cyberspace Administration of China published a new draft of its Regulations on Protecting the Security of Key Information Infrastructure (the “Draft Regulations”), and invited comment from the general public. The Draft Regulations will remain open for comment through August 10, 2017.

Energy and Utilities

Energy and Utilities Security Cybersecurity Manufacturing

The Hacker Mind Podcast: Tib3rius

ForAllSecure

JANUARY 11, 2023

Tib3rius from White Oak Security discusses his experience as a web application security pen tester, his OSCP certification, and how he’s giving back to the community with his Twitch , Youtube , and tools he's made available on GitHub. You don’t. In fact, the word “hack” simply means to take things apart.

IT

IT Security Access Education

M&A Due Diligence: The Devil in Their Data

Data Matters

NOVEMBER 16, 2017

*Article first appeared in Corporate Board Member on November 7, 2017. Cybersecurity insurance was a relatively new—and far from prevalent—concept. It follows that when buying a company to get its innovative technologies or data, it is helpful to know if rogue actors have already stolen or compromised that information.

Data breaches

Data breaches Cybersecurity Risk Compliance

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

Information security is not yet a science; outside of the handful of issues falling under the field of cryptography, there is no formalized system of classification. The most prepared cybersecurity programs of today will not attempt to implement a static, “out-of-the-box” solution to cyber risk. Principle 2. Principle 3.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Information Management Today

Rise in cyber attacks leads to cyber insurance business soaring

Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk

Webinars

Trending Sources

Security Affairs newsletter Round 469 by Pierluigi Paganini – INTERNATIONAL EDITION

Webinars

NYDFS settles cybersecurity regulation matter for $1.8 million

Privacy and Cybersecurity Top 10 for 2018

SEC Announces Settled Charges Against First American for Cybersecurity Disclosure Controls Failures – Lessons Learned

Weekly podcast: NHS upgrade, $242m Equifax loss and prison hacker jailed

Record Data Breach Settlement in Anthem Class Action

SilverTerrier gang uses COVID-19 lures in BEC attacks against healthcare, government organizations

Group-IB presents its annual report on global threats to stability in cyberspace

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Top Cybersecurity Startups to Watch in 2022

More articles about information management than any sane person should write

The Week in Cyber Security and Data Privacy: 23–29 October 2023

OCR Fines Texas Health System For Alleged HIPAA Privacy Rule Violation

China Publishes Draft Regulations on Protecting the Security of Key Information Infrastructure

The Hacker Mind Podcast: Tib3rius

M&A Due Diligence: The Devil in Their Data

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Stay Connected