Hunton Privacy

NOVEMBER 15, 2023

The Australian legislature increased maximum penalties for ‘serious’ contraventions of the Privacy Act with effect from December 2022 to at least A$50 million. The Publicly Available Facts Australian Clinical Labs Limited is listed on the Australian Securities Exchange and operates one of the largest pathology businesses in Australia.

Data breaches 128

Data breaches Privacy Risk Information Security 128

Hunton Privacy

AUGUST 6, 2019

On August 2, 2019, New Hampshire Governor Chris Sununu signed into law SB 194 (the “Bill”), which requires insurers licensed in the state (“licensees”) to put in place data security programs and report cybersecurity events. Key provisions of the Bill include: Information Security Program. Incident Response Plan.

Insurance 81

Insurance Security Cybersecurity Information Security 81

Data Matters

JUNE 23, 2022

Kentucky and Maryland recently continued the trend of state insurance departments adopting some version of the National Association of Insurance Commissioners’ (“NAIC”) Insurance Data Security Model Law. The post Kentucky and Maryland Recently Joined Other States in Adopting NAIC Model Data Security Law.

Insurance 103

Insurance Security Cybersecurity Information Security 103

Krebs on Security

JULY 21, 2023

But one aspect of that vaunted list that hasn’t shifted much since is that very few of these companies list any security professionals within their top executive ranks. But organizations that do not offer this coverage to their security leaders are unlikely to list those positions in their highest ranks, Schreider said.

Security 211

Security Risk Insurance Cybersecurity 211

Data Matters

JANUARY 14, 2019

On December 19, 2018, Ohio adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law. The Act is designed to “establish standards for data security and for the investigation and notification to the Superintendent of Insurance of a cybersecurity event.”.

Insurance 68

Insurance Security Cybersecurity Data breaches 68

IT Governance

OCTOBER 24, 2023

Incident details: Network security incident, where allegedly AlphV gained unauthorised access and made demands to the hospital’s leadership, suggesting a ransomware attack. D-Link Corporation Provides Details about an Information Disclosure Security Incident Date of breach: 2 October 2023. Records breached: Around 700 records.

Data Privacy 107

Data Privacy Privacy Security Data breaches 107

IT Governance

NOVEMBER 6, 2023

According to the security company Resecurity , which discovered the listing, the data included victims’ name, age, gender, address, passport number and Aadhaar number (a 12-digit government identification number). It secured its systems, notified law enforcement and began investigating the incident. Boeing is “assessing the claim”.

Data Privacy 97

Data Privacy Privacy Libraries Security 97

Data Matters

FEBRUARY 11, 2019

On December 28, 2018, Michigan adopted the National Association of Insurance Commissioners’ (NAIC) Insurance Data Security Model Law in the form of Michigan H.B. The Act defines licensees as persons authorized, registered, or licensed under Michigan insurance laws or required to be so. 6491 (Act). MCL § 500.550.

Insurance 68

Insurance Security Cybersecurity FOIA 68

IG Guru

APRIL 16, 2020

Professor Daneil Solove interviews Kimberly Horn about Cyber Insurance and Ransomeware here. The post Ransomware and the Role of Cyber Insurance via Teach Privacy appeared first on IG GURU.

Insurance 53

Insurance Ransomware Privacy Information governance 53

Data Matters

JULY 30, 2018

In October 2017, the National Association of Insurance Commissioners (NAIC) adopted an Insurance Data Security Model Law. On May 3, 2018, South Carolina became the first state to enact this Model Law, in the form of the South Carolina Insurance Data Security Act (H.B.

Insurance 60

Insurance Security Cybersecurity Data breaches 60

The Last Watchdog

OCTOBER 29, 2018

The headlines immediately attempted to lay the blame, in large part, on the fact that Equifax’s chief information security officer was a music major and did not have a background in technology. The FTC considers that ‘reasonable security’ doesn’t mean ‘perfect security.’ Equifax was not special in this regard.

Security 164

Security Data Privacy Privacy Data breaches 164

IT Governance

DECEMBER 14, 2021

With organisations’ cyber security requirements becoming more complex and the threat of cyber attacks growing each year, many decision-makers are turning towards cyber security as a service. This approach, also known as managed cyber security, works by outsourcing cyber security to a third party. You’ll save money.

Security 131

Security Insurance Data breaches Information Security 131

Hunton Privacy

MARCH 20, 2020

Companies suddenly find themselves dealing with a host of privacy issues and questions about sharing information with employees, customers and others. In addition, transitioning to a remote workforce can create privacy and data security concerns.

Privacy 67

Privacy Security Insurance Communications 67

Security Affairs

JANUARY 7, 2024

Every week the best security articles from Security Affairs are free for you in your email box. Experts spotted a new macOS Backdoor named SpectralBlur linked to North Korea Merck settles with insurers regarding a $1.4 A new round of the weekly SecurityAffairs newsletter arrived!

Artificial Intelligence 90

Artificial Intelligence Data breaches Security Ransomware 90

Security Affairs

MARCH 17, 2024

Every week the best security articles from Security Affairs are free for you in your email box. A new round of the weekly SecurityAffairs newsletter arrived! Enjoy a new round of the weekly SecurityAffairs newsletter, including the international press.

Data breaches 103

Data breaches Security Computer and Electronics Ransomware 103

Krebs on Security

JUNE 18, 2021

Securities and Exchange Commission settled its investigation into the matter after the Fortune 500 company agreed to pay a paltry penalty of less than $500,000. The SEC says First American derives nearly 92 percent of its revenue from its title insurance segment, earning $7.1 This week, the U.S. First American Financial Corp.

Insurance 281

Insurance Risk Financial Services Mining 281

Data Matters

FEBRUARY 10, 2021

2 announcing a Cyber Insurance Risk Framework (the Framework) that describes industry best practices for New York-regulated property/casualty insurers. According to NYDFS, the incorporation of these practices should be proportionate to each insurer’s size, resources, geographic distribution, and other factors. The Framework.

Insurance 79

Insurance Financial Services Cybersecurity Risk 79

IT Governance

NOVEMBER 20, 2023

Records breached: 204.1GB of data in 183,793 files Beaverton School District warns parents of student data breach Date of breach: October 2023 Breached organisation: Beaverton School District, Oregon Incident details: One of Oregon’s largest school districts has warned parents that a data breach has affected students’ information.

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

IT Governance

OCTOBER 31, 2023

Breached organisation: A Limerick-based IT services firm (in the Republic of Ireland), retained by 11 towing companies, which are used by state bodies including the Irish national police and security service, An Garda Síochána. Security incident report Date of breach: 29 September 2023 (but report updated on 27 October 2023).

Data Privacy 52

Data Privacy Privacy Data breaches Security 52

Hunton Privacy

JANUARY 26, 2018

On January 25, 2018, the Standardization Administration of China published the full text of the Information Security Technology – Personal Information Security Specification (the “Specification”). The Specification divides personal information into two categories: personal information and sensitive personal information.

Information Security 48

Information Security Security Privacy Personal data 48

Hunton Privacy

MARCH 17, 2023

state to enact comprehensive privacy legislation. The bill is most similar to Utah’s comprehensive privacy law. Unlike some of the other comprehensive state privacy laws, Senate File 262 would not require controllers to undertake data protection assessments.

Privacy 72

Privacy Personal data Sales Insurance 72

Security Affairs

JANUARY 18, 2023

The security loophole resulted in millions of private documents being revealed to the public. Researchers found about 435,000 payslips, 300 tax filings, 3,800 insurance payment documents, and 21,000 salary sheets belonging to various companies using the HR platform’s services. Pierluigi Paganini. SecurityAffairs – hacking, Myrocket).

Privacy 85

Privacy Insurance Personal data Phishing 85

Hunton Privacy

OCTOBER 15, 2021

Bruck and the Division of Consumer Affairs announced a settlement with Diamond Institute for Infertility and Menopause, LLC, over a data breach that compromised the personal information of 14,663 patients, including 11,071 New Jersey residents. Neafsey said in a statement regarding the breach.

Data breaches 103

Data breaches Privacy Insurance Information Security 103

Data Matters

MARCH 12, 2019

Over the last few years, States have enacted increasingly aggressive legislation concerning data privacy and security, raising concerns that companies will be subject to a patchwork of different standards. Aligning the Safeguards Rule with State Regimes.

Privacy 68

Privacy IT Information Security Insurance 68

IG Guru

MAY 21, 2021

The post Insurer AXA to Stop Paying for Ransomware Crime Payments in France via Insurance Journal appeared first on IG GURU. Only the U.S.

Insurance 53

Insurance Ransomware Government Cybersecurity 53

Hunton Privacy

FEBRUARY 29, 2024

Finally, the investigation indicated that GRBH violated the HIPAA Privacy Rule by failing to meet the requirement not to use or disclose PHI except as permitted by the Rule. The Corrective Action Plan also requires GRBH to submit implementation and annual reports to HHS and comply with document retention requirements.

Ransomware 111

Ransomware Personal data Risk Privacy 111

Hunton Privacy

SEPTEMBER 1, 2020

Not disclosing, subject to specified exceptions, a consumer’s genetic data to certain entities ( e.g. , those responsible for making decisions regarding health insurance, life insurance or employment). Violations of the Act are subject to civil penalties. Department of Health and Human Services pursuant to HIPAA and the HITECH Act.

Privacy 85

Privacy Insurance Marketing Information governance 85

Security Affairs

APRIL 25, 2021

Every week the best security articles from Security Affairs free for you in your email box. If you want to receive the weekly Security Affairs Newsletter for free subscribe here. The post Security Affairs newsletter Round 311 appeared first on Security Affairs. Follow me on Twitter: @securityaffairs and Facebook.

Security 79

Security Ransomware Insurance Privacy 79

Hunton Privacy

FEBRUARY 21, 2024

Department of Health and Human Services (“HHS”) Office for Civil Rights (“OCR”) and the National Institute of Standards and Technology (“NIST”) published a final version of Special Publication 800-66 Revision 2, “Implementing the Health Insurance Portability and Accountability Act (“HIPAA”) Security Rule: A Cybersecurity Resource Guide.”

Cybersecurity 52

Cybersecurity Insurance Risk Information Security 52

Security Affairs

JUNE 2, 2023

In April, the non-profit health insurer Point32Health took systems offline in response to a ransomware attack that took place on April 17. The insurer immediately launched an investigation into the incident with the help of third-party cybersecurity experts to determine the extent of the incident. between June 2020 and present.

Ransomware 85

Ransomware Insurance Data breaches Cybersecurity 85

Krebs on Security

DECEMBER 18, 2018

Virtually all companies like to say they take their customers’ privacy and security seriously, make it a top priority, blah blah. That’s because very few of the world’s biggest companies list any security executives in their highest ranks. banks) would have this role in their executive leadership team.

Security 222

Security Marketing Cybersecurity Data breaches 222

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance 40

Insurance Cybersecurity Data breaches Financial Services 40

Security Affairs

NOVEMBER 10, 2023

McLaren Health Care (McLaren) experienced a data breach that compromised the sensitive personal information of approximately 2.2 The security breach exposed the sensitive personal information of 2,192,515 people. The ransomware group accused the organization of having attempted to cover up the security breach.

Data breaches 106

Data breaches Ransomware Insurance Manufacturing 106

Hunton Privacy

FEBRUARY 22, 2017

million as part of a settlement with the New Jersey Division of Consumer Affairs (the “Division”) regarding allegations that Horizon did not adequately protect the privacy of nearly 690,000 policyholders. On February 17, 2017, Horizon Blue Cross Blue Shield of New Jersey (“Horizon”) agreed to pay $1.1

Insurance 45

Insurance Privacy Encryption Passwords 45

IT Governance

MAY 20, 2020

We take a look at some of those challenges in this latest round-up, which discusses the cyber security risks associated with the pandemic and the ways lockdown threatens our ability to work productively and safely. The post Secure Together: Britons scammed out of £3.5 Cyber crime. Phishing scams. Britons have been scammed out of £3.5

Security 118

Security Phishing Insurance Risk 118

Data Matters

FEBRUARY 6, 2019

The stolen information allegedly included names and identifying information, hashed passwords, security questions and answers, family information, Social Security numbers, lab results, health insurance information, doctor’s names, and medical conditions, among other things.

Data breaches 83

Data breaches Computer and Electronics Security Insurance 83

Hunton Privacy

AUGUST 2, 2021

The newly passed laws modify Connecticut’s existing breach notification requirements and establish a safe harbor for businesses that create and maintain a written cybersecurity program that complies with applicable state or federal law or industry-recognized security frameworks. New Breach Notification Requirements (HB 5310).

Cybersecurity 87

Cybersecurity Insurance Military Data Privacy 87