Insurance, Privacy, Risk and Security awareness

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

Data Matters

MARCH 28, 2022

Department of Health and Human Service’s Office for Civil Rights (“OCR”) issued industry guidance for Health Insurance Portability and Accountability Act (“HIPAA”) regulated entities to take preventative steps to protect against some of the more common, and often successful, cyber-attack techniques. On March 17, 2022, the U.S.

Cybersecurity

Cybersecurity Privacy Insurance Risk

Data protection strategy: Key components and best practices

IBM Big Data Hub

MAY 28, 2024

Government regulations, such as the General Data Protection Regulation (GDPR), and industry regulations, such as the Health Insurance Portability and Accounting Act (HIPAA), oblige companies to protect their customers’ personal data. Data risk management To protect their data, organizations first need to know their risks.

Data breaches

Data breaches GDPR Compliance Encryption

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

HL Chronicle of Data Protection

MAY 13, 2019

In the past two years, multiple state bills that have been introduced in the US to provide for cybersecurity requirements and standards to the insurance sector, with recent legislative activity taking place in particular within the States of Ohio, South Carolina, and Michigan. NYDFS: Setting a new bar for state cybersecurity regulation.

Insurance

Insurance Cybersecurity Data breaches Financial Services

OCR Settlement Emphasizes Importance of Implementing Safeguards to Protect PHI

Hunton Privacy

JANUARY 25, 2017

Department of Health and Human Services’ Office for Civil Rights (“OCR”) entered into a resolution agreement with MAPFRE Life Insurance Company of Puerto Rico (“MAPFRE”) relating to a breach of protected health information (“PHI”) contained on a portable storage device. On January 18, 2017, the U.S.

Security awareness

Security awareness Insurance Risk Compliance

Global October Cybersecurity Events: Where You Can Find Thales

Thales Cloud Protection & Licensing

OCTOBER 5, 2022

Along with celebrating Cyber Security Awareness Month, several exciting events are taking place across the world, aiming to educate people on the latest trends in cybersecurity and privacy. On 26 October , we co-host a workshop on cybersecurity insurance with Infinigate. Data Security. Find more details here.

Cybersecurity

Cybersecurity Cloud Digital transformation Sales

A Chief Security Concern for Executive Teams

Krebs on Security

DECEMBER 18, 2018

Virtually all companies like to say they take their customers’ privacy and security seriously, make it a top priority, blah blah. That’s because very few of the world’s biggest companies list any security executives in their highest ranks. ” EXHIBIT A: EQUIFAX. Source: Accenture.

Security

Security Marketing Cybersecurity Data breaches

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

HL Chronicle of Data Protection

MARCH 14, 2019

The Federal Trade Commission (“FTC”) issued notices on March 5 seeking public comment on proposed amendments to the regulations implementing the Gramm-Leach-Bliley Act (“GLBA”), commonly known as the Safeguards Rule and Privacy Rule. Periodic risk assessments. Specific information security measures. Service provider oversight.

Privacy

Privacy Risk Cybersecurity Information Security

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

KnowBe4

FEBRUARY 14, 2023

This means you have a bunch of users that unwittingly follow a set of unusual and unnecessary clicks that they should know better than to follow – something they learn very quickly if they are enrolled in new-school security awareness training. Blog post with links: [link] Are Your Users Making Risky Security Mistakes?

Phishing

Phishing Security awareness Compliance Risk

The Pain of Double Extortion Ransomware

Thales Cloud Protection & Licensing

FEBRUARY 15, 2023

The pains of double extortion ransomware A security gap? These methods provide significant security risks for businesses of all sizes. 72% of the survey respondents agree that ransomware attacks evolve quicker than the security controls required to protect against them.

Ransomware

Ransomware Encryption Security awareness Insurance

Digital Health Industry Take Note: New HIPAA Comment Opportunity and Guidance Addresses Growing Risk of Cybersecurity Attacks

Data Matters

MAY 6, 2022

Digital health companies should take note of new data privacy and security developments under the Health Insurance Portability and Accountability Act (HIPAA) that can affect product planning and customer negotiations. Comments must be submitted by June 6, 2022. Cybersecurity Industry Newsletter.

Risk

Risk Cybersecurity Insurance Authentication

CyberheistNews Vol 13 #17 [Head Start] Effective Methods How To Teach Social Engineering to an AI

KnowBe4

APRIL 25, 2023

Blog post with (lots of) links: [link] [Live Demo] Ridiculously Easy Security Awareness Training and Phishing Old-school awareness training does not hack it anymore. link] [Head Scratcher] More Companies With Cyber Insurance Are Hit by Ransomware Than Those Without? Users beware.

Insurance

Insurance Security awareness Phishing Ransomware

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Data Matters

APRIL 23, 2018

More and more, directors are viewing cyber-risk under the broader umbrella of corporate strategy and searching for ways to help mitigate that risk. Despite the plethora of cyber-risk guidance that has surfaced in recent years, however, there is no “silver bullet” for cyber incident response and prevention.

Cybersecurity

Cybersecurity Risk Passwords Authentication

Top Cybersecurity Companies for 2022

eSecurity Planet

JUNE 7, 2022

They earned the highest score among providers named "Customer's Choice" in Gartner's 2022 "Voice of the Customer” Security Awareness Computer-Based Training report. Rapid7's best-in-class solutions combined with strategic expertise and powerful platform give protectors everything they need to secure their environments with ease.

Cybersecurity

Cybersecurity Encryption Cloud Insurance

CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

KnowBe4

MARCH 14, 2023

In a recent report, data security service Cyberhaven detected and blocked requests to input data into ChatGPT from 4.2% million workers at its client companies because of the risk of leaking confidential info, client data, source code, or regulated information to the LLM. "In

Phishing

Phishing Security Artificial Intelligence Security awareness

Information Management Today

Developments in Health Privacy and Cybersecurity Policy and Regulation: OCR Issues Cybersecurity Warnings and New Health Data Legislation Is Introduced

Data protection strategy: Key components and best practices

Trending Sources

Cybersecurity Standards for the Insurance Sector – A New Patchwork Quilt in the US?

OCR Settlement Emphasizes Importance of Implementing Safeguards to Protect PHI

Global October Cybersecurity Events: Where You Can Find Thales

A Chief Security Concern for Executive Teams

FTC Seeks Comment on Proposed Changes to GLBA Implementing Rules

CyberheistNews Vol 13 #07 [Scam of the Week] The Turkey-Syria Earthquake

The Pain of Double Extortion Ransomware

Digital Health Industry Take Note: New HIPAA Comment Opportunity and Guidance Addresses Growing Risk of Cybersecurity Attacks

CyberheistNews Vol 13 #17 [Head Start] Effective Methods How To Teach Social Engineering to an AI

An Approach to Cybersecurity Risk Oversight for Corporate Directors

Top Cybersecurity Companies for 2022

CyberheistNews Vol 13 #11 [Heads Up] Employees Are Feeding Sensitive Biz Data to ChatGPT, Raising Security Fears

Stay Connected