Cybersecurity Insurance Not Paying for NotPetya Losses

Schneier on Security

This will complicate things: To complicate matters, having cyber insurance might not cover everyone's losses. Zurich American Insurance Company refused to pay out a $100 million claim from Mondelez, saying that since the U.S.

USAA to add 1,000 tech jobs in Phoenix by end of 2020

Information Management Resources

Military insurer will predominantly be looking to hire software engineers and applications developers, it says. Recruiting Customer experience Analytics Data management Data mining USAA

This site is protected by reCAPTCHA and the Google Privacy Policy and Terms of Service apply.

Pentagon’s Warning on DNA Testing is Applicable to all Consumers

ARMA International

On December 23, Yahoo News [1] reported on a Department of Defense memo [2] warning military personnel that using direct-to-consumer (DTC) DNA testing could pose “personal and operational risks.” As quoted in the Military Times article [3] , citing security risks, Cmdr. Military Times.

NEW TECH: DataLocker introduces encrypted flash drive — with key pad

The Last Watchdog

DataLocker honed its patented approach to manufacturing encrypted portable drives and landed some key military and government clients early on; the company has continued branching out ever since. This could be in high security areas, relating to the government or military, or you might be in different countries, where secure Internet connections are not available. DataLocker actually got traction, early on, selling to the military.

Security Affairs newsletter Round 226

Security Affairs

Machete cyber-espionage group targets Latin America military. American Insurance firm State Farm victim of credential stuffing attacks. A new round of the weekly SecurityAffairs newsletter arrived! The best news of the week with Security Affairs.

Credit Freezes are Free: Let the Ice Age Begin

Krebs on Security

In addition, the law requires the big three bureaus to offer free electronic credit monitoring services to all active duty military personnel. It is now free in every U.S.

New Federal Credit Freeze Law Eliminates Fees, Provides for Year-Long Fraud Alerts

Hunton Privacy

The webpage must also give consumers the ability to opt out of the use of information in a consumer report to send the consumer a solicitation of credit or insurance. Section 302 of the Act provides additional protections for active duty military. Under this section, consumer reporting agencies must offer free electronic credit monitoring to all active duty military.

Episode 155: Disinformation is a Cyber Weapon and APTs warm to Mobile Malware

The Security Ledger

» Related Stories Israeli Group Exploited WhatsApp to Spy on Users Episode 158: How NotPetya has Insurers grappling with Systemic Cyber Risk Episode 149: How Real is the Huawei Risk?

List of data breaches and cyber attack in March 2019 – 2.1 billion records leaked

IT Governance

Chinese hackers target universities in pursuit of maritime military secrets (unknown). Insurance firm AIA Singapore discovers data breach (225). New Orleans-based Hartwig Insurance Agency discloses data breach (1,100).

MY TAKE: Massive Marriott breach continues seemingly endless run of successful hacks

The Last Watchdog

I have a Yahoo email account, I’ve shopped at Home Depot and Target , my father was in the military and had a security clearance, which included a dossier on his family, archived at the U.S. Office of Personnel Management , I’ve had insurance coverage from Premera Blue Cross and I’ve stayed at the Marriott Marquis in San Francisco.

In a Few Days, Credit Freezes Will Be Fee-Free

Krebs on Security

There are dozens of private companies that specialize in providing consumer credit reports and scores to specific industries, including real estate brokers, landlords, insurers, debt buyers, employers, banks, casinos and retail stores.

Group-IB presents its annual report on global threats to stability in cyberspace

Security Affairs

According to Group-IB’s experts, the most frustrating trend of 2019 was the use of cyberweapons in military operations. As for 2019, it has become the year of covert military operations in cyberspace. The threat actor mainly targets insurance, consulting, and construction companies.

Washington State Comprehensive Privacy Bill Loses Steam, Data Breach Law Amendment Heads to Governor’s Desk

Data Matters

As the legislative session drew to a close, what once seemed like an inevitability suddenly looked unlikely. The Washington Privacy Act, SB 5376/HB1854, failed to make its way through the legislative process. The Bill’s sponsor, Sen. Reuven Carlyle, called the game on April 17, tweeting that despite the “unprecedented 46-1 vote” in the Senate, “[u]nfortunately, House failed to pass privacy legislation this year. We’re committed to 2020.”

£60 million in recovery costs for Norsk Hydro after refusing ransom demand

IT Governance

The ransomware was accompanied by a note: “Your files are encrypted with the strongest military algorithms. Another way to lessen the burden of recovering from a ransomware attack is to purchase cyber insurance. Norsk Hydro confirmed that it had a cyber insurance policy, and although it hasn’t said how much it will receive, it did state that payments could start appearing in the results of the third quarter.

Washington Amends Data Breach Notification Law

Hunton Privacy

As reported by Bloomberg Law , on May 7, 2019, Washington State Governor Jay Inslee signed a bill ( HB 1071 ) amending Washington’s data breach notification law. The new requirements include the following: Expanded Definition of Personal Information. HB 1071 expands the definition of “personal information.”

Have We Become Apathetic About Breaches?

Thales eSecurity

One such example is the recent disclosure that military personnel wearing Strava devices are revealing highly sensitive information about their locations and activities. Another day, another breach. It’s sarcastic, it’s comical, but it’s also real.

IoT 98

Amended Colorado Bill Aims to Enhance Data Privacy Laws

Data Protection Report

On Wednesday, February 14, 2018, an amended bill passed unanimously in Colorado’s House Committee on State, Veterans and Military Affairs. The proposed bill overlaps with the Health Insurance Portability and Accountability Act of 1996 (HIPAA) and state privacy laws. The amended bill further expands the definition of “personal information” to include student, military, or passport identification numbers.

Washington State Legislators Approve Amendments to Data Breach Law

Hunton Privacy

The Bill triggers notification obligations when a consumer’s name is compromised alongside: Full date of birth; Electronic signatures; Certain identification numbers, including student ID numbers, military ID numbers, passport ID numbers or health insurance ID or policy numbers; Medical history information; Biometric data, including fingerprints, voiceprints, eye retinas, irises, or other unique biological patterns or characteristics; or.

Colorado Amends Data Breach Notification Law and Enacts Data Security Requirements

Hunton Privacy

Key data security and disposal provisions of the Bill include: Definition of Personal Identifying Information: The Bill defines personal identifying information as “a social security number; a personal identification number; a password; a pass code; an official state or government-issued driver’s license or identification card number; a government passport number; biometric data…; an employer, student, or military identification number; or a financial transaction device.”.

2019 eDiscovery Case Law Year in Review, Part 3

eDiscovery Daily

DiGiusti granted the “Children” defendants’ Motion to Compel against non-party City of Oklahoma City Police Department (“OCPD”) to comply with the Children’s subpoena of records related to the murder of their father in a civil case with the insurance company.

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

Board-management discussions about cyber risk should include identification of which risks to avoid, which to accept, and which to mitigate or transfer through insurance, as well as specific plans associated with each approach. Commonly used in military contexts, mandatory policies imply that all access control policy decisions are made by a centralized authority, such that individual users cannot change access rights.