IT Governance

NOVEMBER 1, 2022

Welcome to our October 2022 review of data breaches and cyber attacks. The post List of Data Breaches and Cyber Attacks in October 2022 – 9.9 We identified 102 security incidents throughout the month, which is the second largest figure so far this year – trailing only August (112).

Data breaches 111

Data breaches Ransomware Insurance Phishing 111

eSecurity Planet

JANUARY 11, 2022

This article looks at the top 40 cybersecurity startups to watch in 2022 based on their innovations in new and emerging technologies, length of operation, early funding rounds, scalability, and more. Read more: Top Enterprise Network Security Tools for 2022. Also read: Top Endpoint Detection & Response (EDR) Solutions for 2022.

Cybersecurity 142

Cybersecurity Cloud Compliance Analytics 142

Reltio

JUNE 9, 2022

The insurance industry is facing unprecedented disruption. Insurance carriers have been called to transform customer experience, business offerings, and operations. As an insurer, your current business models are being challenged by new thinking, new competitors, and new ways of working.

Digital transformation 52

Digital transformation Insurance MDM Customer Experience 52

eSecurity Planet

APRIL 26, 2022

Investments in cybersecurity more than doubled from $12 billion to $29.5 Also read : Top Cyber Insurance Companies. Also read : Cybersecurity Outlook 2022: Third-Party, Ransomware, and AI Attacks Will Get Worse. AllegisCyber Investments. Norwest Investments. Tiger Global Investments. Honorable Mention Cybersecurity VCs.

Cybersecurity 126

Cybersecurity Cloud Marketing Security 126

IT Governance

MARCH 1, 2022

The EU has responded to calls for help from Ukraine, and has set up a cyber rapid-response team comprised of 12 volunteers, who will help cyber attack victims. Meanwhile, you can find the full list of cyber attacks and data breaches for February 2022 below. The post List of data breaches and cyber attacks in February 2022 – 5.1

Data breaches 134

Data breaches Ransomware Government Blockchain 134

IT Governance

MARCH 20, 2024

A 2022 Proofpoint study found that 76% of UK board members believed their organisation to be at risk of a material cyber attack in the next 12 months – higher than the global average of 65%. In the UK, cyber security has been dropping down the board’s list of priorities. Specifically, a 13.4% drop for charities (from 72% to 62%).

Security 116

Security Data breaches Government Insurance 116

DLA Piper Privacy Matters

NOVEMBER 3, 2022

The incident, which was made public in late September 2022, is thought to have affected around 9 million individuals (almost 40% of the Australian population), with identity documents relating to approximately 2.22 30% of the adjusted turnover of the entity in the 12 months prior to the breach. million customers.

Privacy 97

Privacy Data breaches Insurance Government 97

KnowBe4

DECEMBER 6, 2022

CyberheistNews Vol 12 #49 | December 6th, 2022. Your KnowBe4 Fresh Content Updates from November 2022. Budget Ammo] Cyber Insurers Turn Attention to Catastrophic Hacks. Some major cloud providers are being excluded from cyber insurance policies by carriers worried about the potential for major cyberattacks.

Security awareness 86

Security awareness Phishing Risk Insurance 86

Security Affairs

NOVEMBER 2, 2023

“On October 12, 2023, Rightway informed Okta that an unauthorized actor gained access to an eligibility census file maintained by Rightway in its provision of services to Okta. ” Exposed data include name, Social Security Number, and health or medical insurance plan number.

Data breaches 108

Data breaches Insurance Access Authentication 108

Security Affairs

JANUARY 19, 2024

According to the Ransomlooker tool, the number of ransomware attack victims increased by 128.17% compared to the previous year (2022), with 1837 additional incidents. What is more unexpected is the continued inclusion of India and Brazil on the top 12 list despite their less progressive economies.

Ransomware 113

Ransomware Manufacturing Retail Insurance 113

Security Affairs

MARCH 22, 2023

“On July 5, 2022, we experienced an incident involving the inaccessibility of certain computer systems on our network. Through our response efforts, we learned that an unauthorized actor obtained access to certain ILS systems between June 30 and July 5, 2022.” The company provides its services to over 4.2

Data breaches 78

Data breaches Insurance Cybersecurity Access 78

Data Protection Report

JANUARY 30, 2023

educational enrollment or opportunity; e. employment opportunities; f. financial or lending services; g. health-care services; h. housing; or i. insurance. 2022-Ohio-4649 (Ohio Dec. 27, 2022). 21, 2022) (2022 WL 17826875. 22, 2022), 6. b. 3. c.

Privacy 115

Privacy Cybersecurity Personal data Insurance 115

Krebs on Security

APRIL 16, 2024

A ten-year retrospective published in 2022 by The Post and Courier in Columbia, S.C. The AP says South Carolina paid $12 million to Experian for identity theft protection and credit monitoring for its residents after the breach. said investigators determined the breach began on Aug.

Sales 238

Sales Retail Insurance Access 238

Thales Cloud Protection & Licensing

MAY 9, 2022

Mon, 05/09/2022 - 05:40. Attacks on Critical National Infrastructure will continue to rise in 2022 as ransomware gangs show no signs of abating. However, even after the Colonial Pipeline attack, less than half of businesses (48%) have a formal ransomware plan according to the 2022 Thales Data Threat Report. east coast.

Insurance 71

Insurance Ransomware Encryption Authentication 71

Security Affairs

MAY 15, 2023

. “The investigation determined that an unknown third party accessed our computer systems from March 12-13, 2023, and that certain personal information may have been obtained from our systems as a part of the incident.” In response to the incident, the company enhanced its technical security measures. We are in the final!

Data breaches 80

Data breaches Cybersecurity Insurance Ransomware 80

Data Matters

SEPTEMBER 20, 2021

The National Association of Insurance Commissioners (NAIC) held its Summer 2021 National Meeting (Summer Meeting) August 14-17, 2021. Highlights include, among others, adoption of revised risk-based capital bond factors for life insurers, amendments to SSAP No. NAIC Adopts Revised Risk-Based Capital Bond Factors for Life Insurers.

Insurance 88

Insurance e-Delivery Paper Sales 88

Hunton Privacy

APRIL 20, 2023

On April 12, 2023, the U.S. Department of Health and Human Services (“HHS”) issued a Notice of Proposed Rulemaking (“NPRM”) to modify protections under the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”) to strengthen reproductive health care privacy.

Privacy 58

Privacy Insurance IT 58

Krebs on Security

MARCH 4, 2022

12, 2021, in regards to their ransomware negotiations with LeMans Corp., But if you have information about their cyber insurance and maybe they have a lot of money in their account, I need a bank payout, then I can bargain. For now, take a look at the documents and see if there is insurance and bank statements.”

Ransomware 212

Ransomware Insurance Security IT 212

Thales Cloud Protection & Licensing

OCTOBER 5, 2022

Thu, 10/06/2022 - 06:55. Les Assises, 12-15 October, Monaco. Les Assises turns 22 this year, and the event motto is "In 2022, We Speed Up!" Cloud Expo Asia, 12-13 October, Singapore. On 26 October , we co-host a workshop on cybersecurity insurance with Infinigate. Find more details here. Safe travels!

Cybersecurity 87

Cybersecurity Cloud Digital transformation Sales 87

Security Affairs

JANUARY 18, 2023

On December 12, 2022, the Cybernews research team discovered a publicly accessible database with 260GB of sensitive personal data belonging to myrocket.co, offering ‘end-to-end’ recruitment solutions and HR services for companies in India. HR management platform myrocket.co Original post at CyberNews.

Privacy 80

Privacy Insurance Personal data Phishing 80

Hunton Privacy

NOVEMBER 23, 2021

On November 18, 2021, the Federal Reserve, Federal Deposit Insurance Corporation, and Office of the Comptroller of the Currency issued a new rule regarding cyber incident reporting obligations for U.S. The final rule becomes effective April 1, 2022, and compliance is required by May 1, 2022. banks and service providers.

Insurance 85

Insurance Compliance Security IT 85

Security Affairs

NOVEMBER 14, 2022

According to research conducted by IBM, the average cost to companies of a data breach in 2022 is US$ 4.35 Add to that, there is the risk of penalties and fines (which are not insurable in most jurisdictions) not only under privacy and data protection regulations but also on the basis of cybersecurity regulations that are now proliferating.

Insurance 111

Insurance Risk Ransomware Encryption 111

IT Governance

JUNE 1, 2023

MCNA Insurance MCNA Insurance, also known as MCNA Dental, was caught up in a cyber hacking incident last week, in which 112 covered entities were affected. MCNA Insurance later confirmed that 8,923,662 people were affected in the incident and said the breach was a result of a ransomware attack. million people.

Data breaches 122

Data breaches Insurance Personal data Ransomware 122

IT Governance

APRIL 9, 2024

Other databases contained health insurance data, such as patents’ names, dates of birth, addresses and medical data. EyeCare Services Partners exposes more 3.5 The biggest database in the blob contained 3.1 million patients and 1.6 million unique Social Security numbers. Source (New) Manufacturing USA Yes 1.1

Data Privacy 52

Data Privacy Privacy Security Manufacturing 52

Krebs on Security

JUNE 15, 2023

Earlier today, incident response firm Mandiant revealed that since at least October 2022, Chinese cyber spies have been exploiting a zero-day vulnerability in many email security gateway (ESG) appliances sold by California-based Barracuda Networks to hoover up email from organizations using these devices. . “Patch your #Fortigate.”

Risk 221

Risk Ransomware Cybersecurity Access 221

Hunton Privacy

SEPTEMBER 22, 2022

On August 23, 2022, the U.S. The PHI included patient name, patient date of birth, date of sample collection, and the name of the provider who took the specimen, in violation of the Health Insurance Portability and Accountability Act of 1996 (“HIPAA”). As part of the settlement, NEDLC agreed to pay HHS $300,640.

Privacy 58

Privacy Compliance Insurance IT 58

Data Protection Report

FEBRUARY 8, 2022

On January 24, 2022, the New York Attorney General (AG) announced a settlement with vision-benefits-provider EyeMed Vision Care, Inc., On January 24, 2022, the New York Attorney General (AG) announced a settlement with vision-benefits-provider EyeMed Vision Care, Inc., In total, information for approximately 2.1 Background.

Passwords 98

Passwords Financial Services Authentication Insurance 98

Thales Cloud Protection & Licensing

JULY 21, 2022

Thu, 07/21/2022 - 12:28. With that in mind, Thales has launched the 2022 Thales Data Threat Report Critical Infrastructure Edition, which includes responses from 300 security leaders and practitioners within critical infrastructure organizations. The Ongoing Cyber Threat to Critical Infrastructure. Go on the Cyber Offensive.

Energy and Utilities 71

Energy and Utilities Ransomware IoT Risk 71

ARMA International

APRIL 18, 2022

Certain sectors, such as banking, financial services, health, and insurance have their own data protection and privacy requirements. Accessed March 13, 2022. 12 GDPR Enforcement Tracker. Accessed March 3, 2022. Accessed March 13, 2022. 12 GDPR Enforcement Tracker. Accessed March 3, 2022. 2 DLA Piper.

Personal data 100

Personal data GDPR Privacy Records Management 100

Krebs on Security

APRIL 3, 2023

John Clifton Davies , a 60-year-old con man from the United Kingdom who fled the country in 2015 before being sentenced to 12 years in prison for fraud, has enjoyed a successful life abroad swindling technology startups by pretending to be a billionaire investor. ” The team from CodesToYou.

Communications 221

Communications Marketing Security Insurance 221

eSecurity Planet

OCTOBER 18, 2022

Also read: eSecurity Planet’s 2022 Cybersecurity Product Awards. A separate Egress survey [PDF] of 500 IT leaders at medium-to-large businesses recently found that while 98 percent deliver anti-phishing training, 84 percent had been victims of successful phishing attacks in the past 12 months. Defense-in-depth or Vendor Sprawl?

IT 120

IT Security Cybersecurity Marketing 120

eSecurity Planet

OCTOBER 11, 2022

UEBA has been growing for some time, and a 2022 Market Data Forecast report predicts its global market size to grow from $890.7 Check Out Best User and Entity Behavior Analytics (UEBA) Tools for 2022. Take a Look at eSecurity Planet’s 2022 Cybersecurity Product Awards. million in 2019 to $1.1 billion by 2025.

Analytics 122

Analytics Cybersecurity IT Data breaches 122

Data Matters

FEBRUARY 10, 2022

On Monday, January 24, 2022, in a speech at the Northwestern University Pritzker School of Law annual Securities Regulation Institute conference, Gary Gensler, Chair of the U.S. 24, 2022), [link]. The intersection of cybersecurity and U.S. national security arises under Reg SCI as well. 11 See Securities Exchange Act Release No.

Cybersecurity 88

Cybersecurity Marketing Risk Compliance 88

Thales Cloud Protection & Licensing

FEBRUARY 15, 2023

According to a recent market study 1 , 71% of individuals surveyed said double and triple extortion tactics have grown in popularity over the last 12 months, and 65% agree that these new threats make it tougher to refuse ransom demands. The average ransom demands have soared between $50 million and $70 million.

Ransomware 71

Ransomware Encryption Security awareness Insurance 71

Data Matters

DECEMBER 1, 2021

Concurrently, the OCC , the Board of Governors of the Federal Reserve System, and the Federal Deposit Insurance Corporation (the Agencies) released a joint statement alerting the industry of their intent to provide additional guidance in the coming months concerning certain activities related to cryptoassets conducted by banking organizations.

Compliance 88

Compliance Risk Insurance Sales 88

IT Governance

JANUARY 30, 2024

Compromised data includes victims’ names, addresses, phone numbers and Aadhaar numbers (a 12-digit government identification number). Source (New) Retail USA Yes 2,588,849 Keenan & Associates Source 1 ; source 2 (Update) Insurance USA Yes 1,509,616 AGC Group Source (New) Manufacturing Japan Yes 1.5 The attack saw 9.7

Data Privacy 52

Data Privacy Retail Privacy Manufacturing 52

KnowBe4

MAY 31, 2023

According to the report, the financial services industry as a target has increased by 72% over 2022 and was the single largest target of financial fraud attacks, representing 49% of all such attacks. link] Cyber Insurance: Is Paying a Ransom Counter-Productive? Date/Time: Wednesday, June 7, @ 2:00 PM (ET) Save My Spot!

Phishing 75

Phishing File names Security awareness Risk 75