Insurance, Passwords, Retail and Risk - Information Management Today

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

The Last Watchdog

JANUARY 30, 2019

Turn the corner into 2019 and we find Citigroup, CapitalOne, Wells Fargo and HSBC Life Insurance among a host of firms hitting the crisis button after their customers’ records turned up on a database of some 24 million financial and banking documents found parked on an Internet-accessible server — without so much as password protection.

Risk

Risk Financial Services Insurance Cybersecurity

Weekly podcast: Password managers, unpatched vulnerabilities, formjacking and Wendy’s

IT Governance

FEBRUARY 21, 2019

Researchers at ISE have identified security flaws affecting four popular password managers on the Windows 10 platform, which could allow malware to access the master password and/or the individual passwords stored in them, even when the password managers are locked. million users – are all potentially affected.

Passwords

Passwords Data breaches Retail Government

50 Ways to Avoid Getting Scammed on Black Friday

Adam Levin

NOVEMBER 17, 2020

It’s worth noting that there’s no reason a legitimate retailer would need that last one — the skeleton key to your identity — to process a purchase.). Make sure your smartphone, tablet and laptop are password-protected, particularly if you’re in the habit of carrying them around wherever you go. Create long and strong passwords.

Retail

Retail e-Delivery Passwords Phishing

Webinars

Generative AI Deep Dive: Advancing from Proof of Concept to Production

MORE WEBINARS

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

IT Governance

MAY 7, 2024

This week, it turns out at least 191 further Australian organisations, including government entities, were affected by this breach, highlighting the risks of supply chain attacks. Source 1 ; source 2 (Update) Insurance USA Yes 75,101 Airsoftc3.com Source 1 ; source 2 (Update) Insurance USA Yes 75,101 Airsoftc3.com

Data breaches

Data breaches Education Manufacturing Retail

11 cyber security predictions for 2020

IT Governance

JANUARY 9, 2020

Cyber insurance has in some regions encouraged victims to pay as it is cheaper than remediation in some cases. The retail and hospitality industries will continue to have their POS equipment targeted. Weak passwords will continue to be exploited as attackers monetise credentials. Ransomware will continue to increase.

Security

Security IoT Phishing Ransomware

CyberheistNews Vol 12 #49 [Keep An Eye Out] Beware of New Holiday Gift Card Scams

KnowBe4

DECEMBER 6, 2022

You told us you have challenging compliance requirements, not enough time to get audits done, and keeping up with risk assessments and third-party vendor risk is a continuous problem. KCM GRC is a SaaS-based platform that includes Compliance, Risk, Policy and Vendor Risk Management modules. million in 16 months.".

Security awareness

Security awareness Phishing Risk Insurance

Rent a hacker: Group-IB uncovers corporate espionage group RedCurl

Security Affairs

AUGUST 13, 2020

Since then, it has conducted 26 targeted attacks on commercial organizations alone, including companies in the fields of construction , finance , consulting , retail , banking , insurance , law ,and travel. This helps RedCurl infect new machines within the victim organization and propagate across the system.

Cloud

Cloud Phishing Analytics Access

Germany: Bavarian Data Protection Authority announces possible fines after sobering result of website search

DLA Piper Privacy Matters

MARCH 21, 2019

In fact the companies searched by the DPA offer goods and services within the fields of, inter alia, online retail, sports, banking and insurance, media, automotive and electronics as well as home and residential. Consequences and risk based recommendations. Fine imposed on Google by French Data Protection Authority (CNIL).

GDPR

GDPR Personal data Risk Retail

List of Data Breaches and Cyber Attacks in 2023

IT Governance

JUNE 1, 2023

MCNA Insurance MCNA Insurance, also known as MCNA Dental, was caught up in a cyber hacking incident last week, in which 112 covered entities were affected. MCNA Insurance later confirmed that 8,923,662 people were affected in the incident and said the breach was a result of a ransomware attack.

Data breaches

Data breaches Insurance Personal data Ransomware

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

IT Governance

MARCH 5, 2024

Affected information includes users’ names, email addresses, IP addresses and encrypted passwords. TB Turtlemint Source (New) Insurance India Yes 1,800,000 Chunghwa Telecom Source (New) Telecoms Taiwan Yes 1.7 The threat actor, KryptonZambie, listed a 5.93

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

IT Governance

JANUARY 23, 2024

The leaked information allegedly includes customers’ names, dates of birth, email addresses, passwords and phone numbers. Data breached: 10,870,524 lines. Publicly disclosed data breaches and cyber attacks: full list This week, we’ve found 130,036,285 records known to be compromised, and 116 organisations suffering a newly disclosed incident.

Data Privacy

Data Privacy Privacy Manufacturing Retail

The Hacker Mind Podcast: Going Passwordless

ForAllSecure

JANUARY 19, 2022

Passwords are everywhere, but they probably weren't intended to be used as much as they are today. Maybe you are at an organization that requires you to change your passwords every 90 days or so, and so you have password fatigue -- there are only so many variations you can do every 90 days or so. I must have the password.

Passwords

Passwords Authentication Access Data breaches

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

IT Governance

JANUARY 16, 2024

GB database includes names, email addresses, phone numbers and passwords. Al Mujtama Pharmacy allegedly breached, more than 7 million records affected More than 7 million data records belonging to the Saudi pharmacy Al Mujtama have reportedly been published on an underground forum. Data breached: >7,000,000 records.

Data Privacy

Data Privacy Privacy Manufacturing Retail

SHARED INTEL: Study shows mismanagement of ‘machine identities’ triggers $52 billion in losses

The Last Watchdog

APRIL 14, 2020

As a result, the way in which they connect and authorize communication makes them a primary security risk for organizations. The humans use usernames and passwords to identify themselves to machines. The machine don’t use usernames and passwords; they use machine identities. We see, everyday, what they’re up against.

Digital transformation

Digital transformation Passwords Retail IoT

Mic Drop: California AG releases long-awaited CCPA Rulemaking

Data Protection Report

OCTOBER 11, 2019

999.313 (c)(1) & (2)) The rules however also state that “a business shall not provide a consumer with specific pieces of personal information if the disclosure creates a substantial, articulable, and unreasonable risk” to the security of the information, the business systems or the consumers account. 999.313 (c)(4)).

Sales

Sales Retail Privacy Access

List of data breaches and cyber attacks in October 2019 – 421 million records breached

IT Governance

OCTOBER 31, 2019

Students forced to reset passwords after learning platform Naivance hacked (1,343). Employees at Canada’s Lucia Mar School District at risk after email gaffe (unknown). US retailer Kroger reports ‘isolated incident’ involving pharmacy records (unknown). Irish beauty chain Thérapie Clinic investigating data breach (unknown).

Data breaches

Data breaches Ransomware Phishing Retail

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

Data Matters

OCTOBER 23, 2019

Moreover, if the business operates a website, but primarily interacts with consumers in retail locations, it will be required to add a third option that allows consumers to submit a form that can be submitted in person at those locations. Recordkeeping and Training (§ 998.317).

Sales

Sales Privacy Passwords Compliance

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

eSecurity Planet

MAY 2, 2024

Compromised Credentials Compromised identities from phishing, info stealers, keyloggers, and bad password habits provide the entry point for most ransomware attacks and data breaches. 583% increase in Kerberoasting [password hash cracking] attacks. 64% of managers and higher admit to poor password practices.

Cybersecurity

Cybersecurity Ransomware Passwords Cloud

Information Management Today

NEW TECH: This free tool can help gauge, manage third-party cyber risk; it’s called ‘VRMMM’

Weekly podcast: Password managers, unpatched vulnerabilities, formjacking and Wendy’s

Webinars

Trending Sources

50 Ways to Avoid Getting Scammed on Black Friday

Webinars

6,009,014 MovieBoxPro Accounts Breached in Another Data Scraping Incident

11 cyber security predictions for 2020

CyberheistNews Vol 12 #49 [Keep An Eye Out] Beware of New Holiday Gift Card Scams

Rent a hacker: Group-IB uncovers corporate espionage group RedCurl

Germany: Bavarian Data Protection Authority announces possible fines after sobering result of website search

List of Data Breaches and Cyber Attacks in 2023

The Week in Cyber Security and Data Privacy: 26 February – 3 March 2024

The Week in Cyber Security and Data Privacy: 15 – 21 January 2024

The Hacker Mind Podcast: Going Passwordless

The Week in Cyber Security and Data Privacy: 8 – 14 January 2024

SHARED INTEL: Study shows mismanagement of ‘machine identities’ triggers $52 billion in losses

Mic Drop: California AG releases long-awaited CCPA Rulemaking

List of data breaches and cyber attacks in October 2019 – 421 million records breached

CCPA In-Depth Series: Draft Attorney General Regulations on Consumer Requests

2024 State of Cybersecurity: Reports of More Threats & Prioritization Issues

Stay Connected