2019, Information Security, Insurance and IT - Information Management Today

2019

Information Security

Insurance

Thousands of Humana customers have their medical data leaked online by threat actors

Security Affairs

JULY 21, 2021

Experts found a DB containing sensitive health insurance data belonging to customers of US insurance giant Humana. An SQL database containing what appears to be highly sensitive health insurance data of more than 6,000 patients has been leaked on a popular hacker forum. Drug prescription listings). Who had access to the data?

Insurance

Insurance Passwords Libraries Access

Myrocket HR platform’s data leak turns into privacy nightmare for employees

Security Affairs

JANUARY 18, 2023

has exposed the personal information of hundreds of thousands of employees and millions of job candidates. The security loophole resulted in millions of private documents being revealed to the public. HR management platform myrocket.co Original post at CyberNews. With the help of Cybernews, we were [able] to patch it much sooner.

Privacy

Privacy Insurance Personal data Access

Join 55,000+

Insiders

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

Trending Sources

The Week in Cyber Security and Data Privacy: 30 October – 5 November 2023

IT Governance

NOVEMBER 6, 2023

According to the security company Resecurity , which discovered the listing, the data included victims’ name, age, gender, address, passport number and Aadhaar number (a 12-digit government identification number). It secured its systems, notified law enforcement and began investigating the incident.

Data Privacy

Data Privacy Privacy Security Libraries

Webinars

Improving the Accuracy of Generative AI Systems: A Structured Approach

MORE WEBINARS

2019 end-of-year review part 1: January to June

IT Governance

DECEMBER 27, 2019

A royal baby, a fire at Notre-Dame, the highest grossing film of all time and more than 12 billion breached data records: 2019 has been quite a year. IT Governance is closing out the year by rounding up 2019’s biggest information security stories. Video-sharing app TikTok agreed to a record $5.7 million (£4.2

Data breaches

Data breaches GDPR Passwords Personal data

NYDFS settles cybersecurity regulation matter for $3 million

Data Protection Report

APRIL 22, 2021

On April 14, 2021, the New York Department of Financial Services (NYDFS) announced a $3 million settlement with insurance company National Securities Corp. According to the consent order, the matter began when NSC reported a cybersecurity event to NYDFS on October 23, 2019. The second incident occurred in March of 2019.

Cybersecurity

Cybersecurity Financial Services Phishing Compliance

US-based children’s clothing maker Hanna Andersson discloses a data breach

Security Affairs

JANUARY 21, 2020

Security firms have monitored the activities of a dozen groups at least since 2010. . According to a joint report published by RiskIQ and FlashPoint in 2019 , some groups are more advanced than others, in particular, the gang tracked as Group 4 appears to be very sophisticated. The malware was completely removed on November 11, 2019.

Data breaches

Data breaches Retail Cloud Insurance

New York SHIELD Act $600,000 settlement

Data Protection Report

FEBRUARY 8, 2022

In total, information for approximately 2.1 million individuals was exposed, including approximately 98,632 New Yorkers.The AG began an investigation based on New York’s Executive Law § 63(12) [deception] and General Business Law §§ 349 [deception] and 899-bb. In total, information for approximately 2.1

Passwords

Passwords Financial Services Authentication Insurance

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

Data Matters

AUGUST 19, 2020

On July 21, 2020, the New York State Department of Financial Services (NYDFS or the Department) issued a statement of charges and notice of hearing (the Statement) against First American Title Insurance Company (First American) for violations of the Department’s Cybersecurity Requirements for Financial Services Companies, 23 N.Y.C.R.R.

Financial Services

Financial Services Cybersecurity Insurance Risk

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

IT Governance

NOVEMBER 20, 2023

According to databreaches.net , the group exfiltrated tenant information, service management information, financial data, business data, property data, employee data and sensitive business information. For more information about the SEC cyber security disclosure rules, register for our free webinar on 30 November.)

Data Privacy

Data Privacy Privacy Data breaches Security

Tens of Million patients impacted by the AMCA data breach

Security Affairs

JUNE 5, 2019

Securities and Exchange Commission (SEC) Quest revealed that the attackers broke into the web payment portal of the American Medical Collection Agency between August 1, 2018 and March 30, 2019. The security breach has impacted roughly 12 million of Quest Diagnostics ‘ patients and roughly 7.7 of LabCorp patients.

Data breaches

Data breaches Insurance Sales Security

Oregon Department of Human Services data breach impacted 645,000 clients

Security Affairs

JUNE 20, 2019

Oregon Department of Human Services officials confirmed that the organization has suffered a data breach that has exposed personal details and health information of 645,000 clients. “The Oregon Department of Human Services is notifying about 645,000 clients whose personal information is now at risk from a January data breach.

Data breaches

Data breaches Phishing Insurance Risk

How are the EU member states progressing in their implementation of the NIS Directive?

IT Governance

APRIL 10, 2019

On 6 July 2016, the EU officially adopted the NIS Directive (Directive on security of network and information systems) and gave each EU member state just under two years to implement its requirements into national law. Implementation status : Transposed, as IT Security Law. Implementation status : In progress. 360 of 2018.

Compliance

Compliance Information Security Government Insurance

1M compromised cards available for free in the underground market

Security Affairs

AUGUST 8, 2021

All material from 2018-2019. Figure 5 – Screenshot from Group-IB Threat Intelligence & Attribution system Nevertheless, according to Group-IB’s findings, despite the post author’s claim that the cards were compromised from 2018-2019, 97% of the records in the database are still valid. Valid at 3%.

Marketing

Marketing Sales IT Insurance

SEC Chair: Sweeping New Cybersecurity Rules Are Coming Soon

Data Matters

FEBRUARY 10, 2022

Establish and Implement Proper Policies and Procedures: The orders against First American and Pearson highlight the importance of maintaining policies and procedures for the reporting of security incidents and patching as well as the proper training of personnel under these policies and procedures. s software.

Cybersecurity

Cybersecurity Marketing Risk Compliance

List of Data Breaches and Cyber Attacks in 2023

IT Governance

JUNE 1, 2023

Meanwhile, you can subscribe to our Weekly Round-up to receive the latest cyber security news and advice delivered straight to your inbox. IT Governance is dedicated to helping organisations tackle the threat of cyber crime and other information security weaknesses.

Data breaches

Data breaches Insurance Personal data Ransomware

MY TAKE: A primer on how ransomware arose to the become an enduring scourge

The Last Watchdog

AUGUST 15, 2019

In the first four months of 2019 alone, some 22 attacks have been disclosed. insurance giant Beazley Worldwide reported that the average ransomware demand in 2018 was more than $116,000, a figure admittedly skewed by some very large demands. “All we know is MONEY! Tik Tak, Tik Tak, Tik Tak!” mayors attending the U.S.

Ransomware

Ransomware Access Cybersecurity Insurance

Top Cybersecurity Startups to Watch in 2022

eSecurity Planet

JANUARY 11, 2022

Information security products , services, and professionals have never been in higher demand, making for a world of opportunities for cybersecurity startups. With evolving attack methodologies due to machine learning, quantum computing, and sophisticated nation-state hackers, security startups are receiving record funding.

Cybersecurity

Cybersecurity Cloud Compliance Analytics

Thousands of Humana customers have their medical data leaked online by threat actors

Myrocket HR platform’s data leak turns into privacy nightmare for employees

Webinars

Trending Sources

The Week in Cyber Security and Data Privacy: 30 October – 5 November 2023

Webinars

2019 end-of-year review part 1: January to June

NYDFS settles cybersecurity regulation matter for $3 million

US-based children’s clothing maker Hanna Andersson discloses a data breach

New York SHIELD Act $600,000 settlement

Historic Charges: First Enforcement Action Filed by New York Department of Financial Services Under Cybersecurity Regulation

The Week in Cyber Security and Data Privacy: 13 – 19 November 2023

Tens of Million patients impacted by the AMCA data breach

Oregon Department of Human Services data breach impacted 645,000 clients

How are the EU member states progressing in their implementation of the NIS Directive?

1M compromised cards available for free in the underground market

SEC Chair: Sweeping New Cybersecurity Rules Are Coming Soon

List of Data Breaches and Cyber Attacks in 2023

MY TAKE: A primer on how ransomware arose to the become an enduring scourge

Top Cybersecurity Startups to Watch in 2022

Stay Connected